Nearly 34 Ransomware Variants Observed in Hundreds of Cyberattacks in Q4 2021

The Hacker News Daily Updates [Newsletter]( [cover]( [Security Basics Quick Reference Guide]( Businesses worldwide are at risk for security breaches. [Download Now]( Sponsored LATEST NEWS Mar 18, 2022 [Experts Find Some Affiliates of BlackMatter Now Spreading BlackCat Ransomware]( An analysis of two ransomware attacks has identified overlaps in the tactics, techniques, and procedures (TTPs) between BlackCat and BlackMatter, indicating a strong connection between the two groups. While it's typical of ransomware groups to rebrand their operations in response to increased ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Google Uncovers 'Initial Access Broker' Working with Conti Ransomware Gang]( Google's Threat Analysis Group (TAG) took the wraps off a new initial access broker that it said is closely affiliated to a Russian cyber crime gang notorious for its Conti and Diavol ransomware operations. Dubbed Exotic Lily, the financially motivated threat actor has been observed exploiting a ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [New Variant of Russian Cyclops Blink Botnet Targeting ASUS Routers]( ASUS routers have emerged as the target of a nascent botnet called Cyclops Blink, almost a month after it was revealed the malware abused WatchGuard firewall appliances as a stepping stone to gain remote access to breached networks. According to a new report published by Trend Micro, the botnet's ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion]( In what's an act of deliberate sabotage, the developer behind the popular "node-ipc" NPM package shipped a new tampered version to condemn Russia's invasion of Ukraine, raising concerns about security in the open-source and the software supply chain. Affecting versions 10.1.1 and 10.1.2 of the ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [DirtyMoe Botnet Gains New Exploits in Wormable Module to Spread Rapidly]( The malware known as DirtyMoe has gained new worm-like propagation capabilities that allow it to expand its reach without requiring any user interaction, the latest research has found. "The worming module targets older well-known vulnerabilities, e.g., EternalBlue and Hot Potato Windows privilege ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [cover]( [Security Basics Quick Reference Guide]( Businesses worldwide are at risk for security breaches. [Download Now]( Sponsored This email was sent to {EMAIL}. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please [click here](. Contact The Hacker News: info@thehackernews.com [Unsubscribe]( The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India