The Hacker News Daily Updates.

"CISA warns of critical flaws in Illumina's DNA sequencing."

Views expressed in this cybersecurity, cybercrime update are those of the reporters and correspondents. Accessed on 29 April 2023, 2046 UTC.  Content provided by email subscription to "The Hacker News Daily Updates."

Source: https://mail.google.com/mail/u/0/#inbox/FMfcgzGsmNTcLSzhVhKBLZFHplSMfKTn ("The Hacker News Daily Updates").

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

The Hacker News Daily Updates

Securing Workloads in Multicloud Environments with the Zscaler Zero Trust Exchange Protect your data and workloads, eliminate attack surfaces, and stop the lateral movement of threats. Download Now Sponsored

LATEST NEWS Apr 29, 2023

CISA Warns of Critical Flaws in Illumina's DNA Sequencing Instruments The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released an Industrial Control Systems (ICS) medical advisory warning of a critical flaw impacting Illumina medical devices. The issues impact the Universal Copy Service (UCS) software in the Illumina MiSeqDx, NextSeq 550Dx, iScan, iSeq 100, MiniSeq, MiSeq, NextSeq 500, NextSeq 550, NextSeq 1000/2000, and NovaSeq 6000 ... Read More

ChatGPT is Back in Italy After Addressing Data Privacy Concerns OpenAI, the company behind ChatGPT, has officially made a return to Italy after the company met the data protection authority's demands ahead of April 30, 2023, deadline. The development was first reported by the Associated Press. OpenAI's CEO, Sam Altman, tweeted, "we're excited ChatGPT is available in [Italy] again!" The reinstatement comes following Garante's decision to temporarily ... Read More

New Atomic macOS Malware Steals Keychain Passwords and Crypto Wallets Threat actors are advertising a new information stealer for the Apple macOS operating system called Atomic macOS Stealer (or AMOS) on Telegram for $1,000 per month, joining the likes of MacStealer. "The Atomic macOS Stealer can steal various types of information from the victim's machine, including Keychain passwords, complete system information, files from the desktop and documents folder, ... Read More

Why Your Detection-First Security Approach Isn't Working Stopping new and evasive threats is one of the greatest challenges in cybersecurity. This is among the biggest reasons why attacks increased dramatically in the past year yet again, despite the estimated $172 billion spent on global cybersecurity in 2022. Armed with cloud-based tools and backed by sophisticated affiliate networks, threat actors can develop new and evasive malware more ... Read More

Zyxel Firewall Devices Vulnerable to Remote Code Execution Attacks — Patch Now Networking equipment maker Zyxel has released patches for a critical security flaw in its firewall devices that could be exploited to achieve remote code execution on affected systems. The issue, tracked as CVE-2023-28771, is rated 9.8 on the CVSS scoring system. Researchers from TRAPA Security have been credited with reporting the flaw. "Improper error message handling in some firewall ... Read More

ViperSoftX InfoStealer Adopts Sophisticated Techniques to Avoid Detection A significant number of victims in the consumer and enterprise sectors located across Australia, Japan, the U.S., and India have been affected by an evasive information-stealing malware called ViperSoftX. ViperSoftX was first documented by Fortinet in 2020, with cybersecurity company Avast detailing a campaign in November 2022 that leveraged the malware to distribute a malicious Google ... Read More

Attention Online Shoppers: Don't Be Fooled by Their Sleek, Modern Looks — It's Magecart! An ongoing Magecart campaign has attracted the attention of cybersecurity researchers for leveraging realistic-looking fake payment screens to capture sensitive data entered by unsuspecting users. "The threat actor used original logos from the compromised store and customized a web element known as a modal to perfectly hijack the checkout page," Jérôme Segura, director of threat intelligence ... Read More

Tonto Team Uses Anti-Malware File to Launch Attacks on South Korean Institutions South Korean education, construction, diplomatic, and political institutions are at the receiving end of new attacks perpetrated by a China-aligned threat actor known as the Tonto Team. "Recent cases have revealed that the group is using a file related to anti-malware products to ultimately execute their malicious attacks," the AhnLab Security Emergency Response Center (ASEC) said in a ... Read More

Securing Workloads in Multicloud Environments with the Zscaler Zero Trust Exchange Protect your data and workloads, eliminate attack surfaces, and stop the lateral movement of threats. Download Now Sponsored