The Hacker News: Weekly Cybersecurity Newsletter

Here are "the top cybersecurity stories you must read now!"

Apple issues urgent warning.

Are your data safe?

MyloBot Botnet goes global.

Is Twitter leaving you exposed?

-----

Accessed on 27 February 2023, 1418 UTC.  Content provided by email subscription to "The Hacker News."  Source:  https://mail.google.com/mail/u/0/#inbox/FMfcgzGrcjWxRSlHZQRfwScJVQTZbBKn ("The Hacker News:  Weekly Cybersecurity Newsletter").

Please click link or scroll down to read your selections.

Russ Roberts (https://www.cybersecurityjournal.net and https://paper.li/RussellRoberts).

The Hacker News
Weekly Cybersecurity Newsletter

Greetings, fellow defenders of digital security!


It's time to fortify our shields and sharpen our swords because the battle against cyber threats never ceases. Welcome to our weekly cybersecurity newsletter, where we bring you the latest and greatest insights, news, and tips to keep your digital kingdom safe from the relentless attacks of hackers and cybercriminals.


So, join us as we dive into the exciting and ever-evolving world of cybersecurity:


1 — iPhone, iPad, and Mac Devices at Risk: Apple Issues Urgent Warning

Apple recently updated its security advisories to include three new vulnerabilities that affect iOS, iPadOS, and macOS. These vulnerabilities could potentially allow bad actors to read arbitrary files or execute code on affected devices. Overall, this highlights the importance of keeping devices and software up-to-date, as these updates often include important security fixes.


2 — Is Your Data Safe? Even Top-Ranked Android Apps Deceive Users

So, some troubling news has come to light about the safety of Android apps on the Google Play Store. Apparently, an investigation has found some pretty serious issues with the data safety labels that are supposed to tell us whether an app is safe to use or not. These labels can apparently be misleading or even completely false, which is definitely cause for concern. It's important for us to be able to trust the information we're given about the apps we download, so this is definitely something we'll want to keep an eye on.


3 — MyloBot Botnet Goes Global: 50K Devices Infected Daily

A new and dangerous botnet called MyloBot is on the loose and spreading rapidly across the globe. This botnet is infecting over 50,000 devices each day and causing havoc for individuals and businesses alike. The malware uses a multi-stage process to infect devices and can spread through various means, including spam emails, phishing websites, and unpatched software vulnerabilities.


4 — Is Twitter Leaving You Exposed? Only Blue Subscribers Get 2FA via SMS!

Twitter has announced that it will limit SMS-based 2-factor authentication (2FA) to its blue subscribers only. This means that users who rely on SMS-based 2FA to secure their Twitter accounts will need to upgrade to a premium subscription to continue using this feature. Twitter recommends that users switch to app-based 2FA methods, such as Google Authenticator, Authy, or Duo Mobile, which are generally more secure than SMS-based 2FA.


The Hacker News / UPCOMING WEBINARS


We're excited to announce two upcoming webinars that we think you won't want to miss.

1. First up, we have a MythBusting Special that will explore and debunk 9 common myths about file-based threats. In this webinar, we'll dive deep into the misconceptions surrounding file-based attacks and provide you with the knowledge and insights you need to protect your organization against these types of threats.

2. Next, we have a webinar that will tackle the top SaaS security challenges of 2023. As more and more organizations move their operations to the cloud, it's crucial to understand the unique security risks that come with using SaaS applications. In this webinar, our experts will discuss the top challenges facing organizations in 2023 and provide you with practical strategies for overcoming them.

We hope you'll join us for both of these informative and engaging webinars.


5 — Coinbase Security Breached: Employee Fooled by SMS Scam

It has been reported that a Coinbase employee was the victim of an SMS scam as part of a cyber attack. While the attack did result in limited data being exposed, it serves as a stark reminder of the importance of remaining vigilant against sophisticated cyber threats. So, what can we learn from this incident? Education and awareness around cybersecurity threats and best practices are crucial to preventing incidents like this from occurring.


6 — Norway Strikes Back: Millions in Cryptocurrency Seized from Hackers!

The Norwegian police agency Økokrim made a big win against cybercriminals when they announced the seizure of $5.84 million worth of cryptocurrency stolen by the notorious Lazarus Group. This successful operation serves as a reminder of the importance of international cooperation in combating cybercrime.


7 — Havoc Framework: Latest Tool in the Arsenal of Cybercriminals!

It seems that threat actors have found a new tool to use in their illegal activities. The tool in question is called Havoc, and it's an open-source command-and-control (C2) framework that is gaining popularity among cybercriminals as an alternative to other well-known legitimate toolkits like Cobalt Strike, Sliver, and Brute Ratel.


8 — Warning: Your Mac Could Be Secretly Mining Cryptocurrency!

A recent discovery by Jamf Threat Labs has shown that hackers are using Trojanized versions of genuine applications to deploy cryptocurrency mining malware on macOS systems. These sneaky attacks are particularly evasive because they use a familiar and trustworthy application to execute their malicious intent.


As we wrap up this week's cybersecurity newsletter, it's important to remember that cybersecurity is not just a topic for IT professionals and security experts. It affects us all, from the way we shop online to the way we communicate with our friends and family.


As the digital world continues to evolve at a rapid pace, we must remain vigilant and proactive in protecting our personal and sensitive information. From staying up-to-date with the latest security measures to practicing good online habits, there are many steps we can take to stay safe in the digital age.


So, as we head into the new week, let's make a commitment to prioritize our online security and do our part to create a safer, more secure digital world for everyone. Remember, cybersecurity is a team effort, and together we can make a real difference.

Comments

Post a Comment

Please leave a comment about our recent post.

Popular posts from this blog

Cyber War News Today.

Image
"International Defence Cooperation:  A key to regional stability." Views expressed in this cybersecurity, cyber espionage, and cyber crime update are those of the reporters and correspondents.  Accessed on 15 December 2024, 0134 UTC. Content and Source:   https://cyberwar.einnews.com/news/cyber-war-news?n=2&code=FA9GNesSTpp2rjO1&utm_source=NewsletterNews&utm_medium=email&utm_campaign=Cyber+War+News&utm_content=navig Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). Cyber War News Monitoring Get by    Email    •     RSS Published on  Dec 13, 2024 The Cyber Warfare Market Size Reach USD 127.1 Billion by 2032 Exhibiting CAGR at 13.3% WILMINGTON, DE, UNITED STATES, December 13, 2024 /⁨EINPresswire.com⁩/ -- According to the report, The Cyber Warfare Market Size Reach USD 127.1 Billion by 2032 Exhibiting CAGR at 1...
Read more

BleepingComputer.com

Image
"Progress LoadMaster vulnerable to 10/10 severity RCE flaw." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 08 September 2024, 1458 UTC. Content and Source:   https://www.bleepingcomputer.com/ Please check link or scroll down to read your selections. Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). Latest Articles   Security Progress LoadMaster vulnerable to 10/10 severity RCE flaw Progress Software has issued an emergency fix for a maximum (10/10) severity vulnerability impacting its LoadMaster and LoadMaster Multi-Tenant (MT) Hypervisor products that allows attackers to remotely execute commands on the device. Bill Toulas   September 08, 2024   10:11 AM     0   Deals Get started learning about cybersecurity with this course bundle deal Take a real step towards a job in information security with this intro to cybersecurity. Get the 2...
Read more

The Cyberwire Daily Briefing

Image
"Fortinet confirms breach of customer data." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 15 September 2024, 1339 UTC. Content and Source:   https://thecyberwire.com/newsletters/daily-briefing/13/176 Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). V13 | Issue 176 | 9.13.24 Daily Briefing for 09.13.24 Announcement Cloud Security in the Age of Generative AI. Artificial Intelligence is revolutionizing business, but it also introduces new risks. Join us on Wednesday, September 18th at 2pm EDT for a compelling live webinar on "Good vs. Evil: Cloud Security in the Age of Generative AI" with N2K CyberWire’s Dave Bittner and Sysdig’s Loris Degioanni.  Learn more and register now . Summary By the CyberWire staff At a glance. Fortinet confirms breach of customer data. Iran's Scarred Manticore deplo...
Read more