Microsoft Patches Zero-Day Flaw Exploited by North Korea's Lazarus Group

THN Daily Updates [Newsletter]( [cover]( [[Watch LIVE] The AI Revolution in Vulnerability Management: 2025 Trends for Security Leaders]( Transform Your Team: Learn How Security Champions Turn Developers into Security Advocates [Download Now]( Sponsored LATEST NEWS Aug 19, 2024 [How to Automate the Hardest Parts of Employee Offboarding]( According to recent research on employee offboarding, 70% of IT professionals say they’ve experienced the negative effects of incomplete IT offboarding, whether in the form of a security ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks]( Malicious actors are using a cloud attack tool named Xeon Sender to conduct SMS phishing and spam campaigns on a large scale by abusing legitimate services. "Attackers can use Xeon to send messages ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Actionable AWS Security Group Best Practices]( This 10 page cheat sheet is your essential guide for AWS Security Groups, packed with expert insights, actionable advice, and practical code snippets to fortify your AWS ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Microsoft Patches Zero-Day Flaw Exploited by North Korea’s Lazarus Group]( A newly patched security flaw in Microsoft Windows was exploited as a zero-day by Lazarus Group, a prolific state-sponsored actor affiliated with North Korea. The security vulnerability, tracked as ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Researchers Uncover New Infrastructure Tied to FIN7 Cybercrime Group]( Cybersecurity researchers have discovered new infrastructure linked to a financially motivated threat actor known as FIN7. The two clusters of potential FIN7 activity "indicate communications inbound ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [OpenAI Blocks Iranian Influence Operation Using ChatGPT for U.S. Election Propaganda]( OpenAI on Friday said it banned a set of accounts linked to what it said was an Iranian covert influence operation that leveraged ChatGPT to generate content that, among other things, focused on the ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Attackers Exploit Public .env Files to Breach Cloud Accounts in Extortion Campaign]( A large-scale extortion campaign has compromised various organizations by taking advantage of publicly accessible environment variable files (.env) that contain credentials associated with cloud and ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Russian Hacker Jailed 3+ Years for Selling Stolen Credentials on Dark Web]( A 27-year-old Russian national has been sentenced to over three years in prison in the U.S. for peddling financial information, login credentials, and other personally identifying information (PII) ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [cover]( [[Watch LIVE] The AI Revolution in Vulnerability Management: 2025 Trends for Security Leaders]( Transform Your Team: Learn How Security Champions Turn Developers into Security Advocates [Download Now]( Sponsored This email was sent to {EMAIL}. You are receiving this newsletter because you opted-in to receive relevant communications from THN. To manage your email newsletter preferences, please [click here](. Contact THN: info@thehackernews.com [Unsubscribe]( THN | 2nd Floor, 219, K.P BLock, Pitampura, Delhi