Emotet Botnet Distributing Self-Unlocking Password-Protected RAR Files to Drop Malware

The Hacker News Daily Updates [Newsletter]( [cover]( [Moving Past Passwords (At Last!)]( 7 Key Takeaways to Passwordless Authentication [Download Now]( Sponsored LATEST NEWS Oct 22, 2022 [Critical Flaw Reported in Move Virtual Machine Powering the Aptos Blockchain Network]( Researchers have disclosed details about a now-patched critical flaw in the Move virtual machine that powers the Aptos blockchain network. The vulnerability "can cause Aptos nodes to crash and cause denial of service," Singapore-based Numen Cyber Labs said in a technical write-up published earlier ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Emotet Botnet Distributing Self-Unlocking Password-Protected RAR Files to Drop Malware]( The notorious Emotet botnet has been linked to a new wave of malspam campaigns that take advantage of password-protected archive files to drop CoinMiner and Quasar RAT on compromised systems. In an attack chain detected by Trustwave SpiderLabs researchers, an invoice-themed ZIP file lure was found ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Multiple Campaigns Exploit VMware Vulnerability to Deploy Crypto Miners and Ransomware]( A now-patched vulnerability in VMware Workspace ONE Access has been observed being exploited to deliver both cryptocurrency miners and ransomware on affected machines. "The attacker intends to utilize a victim's resources as much as possible, not only to install RAR1Ransom for extortion, but also ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Hackers Started Exploiting Critical "Text4Shell" Apache Commons Text Vulnerability]( WordPress security company Wordfence on Thursday said it started detecting exploitation attempts targeting the newly disclosed flaw in Apache Commons Text on October 18, 2022. The vulnerability, tracked as CVE-2022-42889 aka Text4Shell, has been assigned a severity ranking of 9.8 out of a possible ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [A Quick Look at the "Strengthening America's Cybersecurity" Initiative]( Acknowledging that you have a problem is the first step to addressing the problem in a serious way. This seems to be the reasoning for the White House recently announcing its "Strengthening America's Cybersecurity" initiative. The text of the announcement contains several statements that anyone ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [cover]( [Moving Past Passwords (At Last!)]( 7 Key Takeaways to Passwordless Authentication [Download Now]( Sponsored This email was sent to {EMAIL}. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please [click here](. Contact The Hacker News: info@thehackernews.com [Unsubscribe]( The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India