TheHackerNews

March 24, 2022 Researchers have disclosed details of a newly discovered macOS variant of a malware implant developed by a Chinese espionage threat actor known to strike attack organizations across Asia. Attributing the attacks to a group tracked as Storm Cloud, cybersecurity firm Volexity characterized the new malware, dubbed Gimmick, as a “feature-rich, multi-platform malware family that …

New Variant of Chinese Gimmick Malware Targeting macOS Users Read More »

March 24, 2022 A China-based advanced persistent threat (APT) known as Mustang Panda has been linked to an ongoing cyber espionage campaign using a previously undocumented variant of the PlugX remote access trojan on infected machines. Slovak cybersecurity firm ESET dubbed the new version Hodur, owing to its resemblance to another PlugX (aka Korplug) variant called THOR that came …

Chinese ‘Mustang Panda’ Hackers Spotted Deploying New ‘Hodur’ Malware Read More »

March 24, 2022 Microsoft on Tuesday confirmed that the LAPSUS$ extortion-focused hacking crew had gained “limited access” to its systems, as authentication services provider Okta revealed that nearly 2.5% of its customers have been potentially impacted in the wake of the breach. “No customer code or data was involved in the observed activities,” Microsoft’s Threat Intelligence Center …

Microsoft and Okta Confirm Breach by LAPSUS$ Extortion Group Read More »

March 24, 2022 Vulnerable routers from MikroTik have been misused to form what cybersecurity researchers have called one of the largest botnet-as-a-service cybercrime operations seen in recent years.  According to a new piece of research published by Avast, a cryptocurrency mining campaign leveraging the new-disrupted Glupteba botnet as well as the infamous TrickBot malware were all distributed …

Botnet of Thousands of MikroTik Routers Abused in Glupteba, TrickBot Campaigns Read More »

March 24, 2022 A new class of security tools is emerging that promises to significantly improve the effectiveness and efficiency of threat detection and response. Emerging Extended Detection and Response (XDR) solutions aim to aggregate and correlate telemetry from multiple detection controls and then synthesize response actions. XDR has been referred to as the next …

Use This Definitive RFP Template to Effectively Evaluate XDR solutions Read More »

March 23, 2022 Back in 2018, Palo Alto Networks CTO and co-founder Nir Zuk coined a new term to describe the way that businesses needed to approach cybersecurity in the years to come. That term, of course, was extended detection and response (XDR). It described a unified cybersecurity infrastructure that brought endpoint threat detection, network …

Wazuh Offers XDR Functionality at a Price Enterprises Will Love — Free! Read More »

March 23, 2022 Microsoft and authentication services provider Okta said they are investigating claims of a potential breach alleged by the LAPSUS$ extortionist gang. The development, which was first reported by Vice and Reuters, comes after the cyber criminal group posted screenshots and source code of what it said were the companies’ internal projects and systems on its …

LAPSUS$ Hackers Claim to Have Breached Microsoft and Authentication Firm Okta Read More »

March 23, 2022 Five new security weaknesses have been disclosed in Dell BIOS that, if successfully exploited, could lead to code execution on vulnerable systems, joining the likes of firmware vulnerabilities recently uncovered in Insyde Software’s InsydeH2O and HP Unified Extensible Firmware Interface (UEFI). Tracked as CVE-2022-24415, CVE-2022-24416, CVE-2022-24419, CVE-2022-24420, and CVE-2022-24421, the Article posted by: https://thehackernews.com/2022/03/new-dell-bios-bugs-affect-millions-of.html …

New Dell BIOS Bugs Affect Millions of Inspiron, Vostro, XPS, Alienware Systems Read More »

March 23, 2022 The U.S. government on Monday once again cautioned of potential cyber attacks from Russia in retaliation for economic sanctions imposed by the west on the country following its military assault on Ukraine last month. “It’s part of Russia’s playbook,” U.S. President Joe Biden said in a statement, citing “evolving intelligence that the Russian Government is exploring options.” The development …

U.S. Government Warns Companies of Potential Russian Cyber Attacks Read More »

March 22, 2022 A novel phishing technique called browser-in-the-browser (BitB) attack can be exploited to simulate a browser window within the browser in order to spoof a legitimate domain, thereby making it possible to stage convincing phishing attacks. According to penetration tester and security researcher, who goes by the handle mrd0x on Twitter, the method …

New Browser-in-the Browser (BITB) Attack Makes Phishing Nearly Undetectable Read More »