Hackers Using Rogue Versions of KeePass and SolarWinds Software to Distribute RomCom RAT

The Hacker News Daily Updates [Newsletter]( [cover]( [Get Proactive: How to Build a Resilient Cybersecurity Program]( Learn how to get proactive about your organization's cybersecurity posture to prevent attacks from happening. [Download Now]( Sponsored LATEST NEWS Nov 3, 2022 [Why Identity & Access Management Governance is a Core Part of Your SaaS Security]( Every SaaS app user and login is a potential threat; whether it's bad actors or potential disgruntled former associates, identity management and access control is crucial to prevent unwanted or mistaken entrances to the organization's data and systems. Since enterprises have thousands to tens of ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [OPERA1ER APT Hackers Targeted Dozens of Financial Organizations in Africa]( A French-speaking threat actor dubbed OPERA1ER has been linked to a series of more than 30 successful cyber attacks aimed at banks, financial services, and telecom companies across Africa, Asia, and Latin America between 2018 and 2022. According to Singapore-headquartered cybersecurity company ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Hackers Using Rogue Versions of KeePass and SolarWinds Software to Distribute RomCom RAT]( The operators of RomCom RAT are continuing to evolve their campaigns with rogue versions of software such as SolarWinds Network Performance Monitor, KeePass password manager, and PDF Reader Pro. Targets of the operation consist of victims in Ukraine and select English-speaking countries like the ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [New TikTok Privacy Policy Confirms Chinese Staff Can Access European Users' Data]( Popular short-form video-sharing service TikTok is revising its privacy policy for European users to make it explicitly clear that user data can be accessed by some employees from across the world, including China. The ByteDance-owned platform, which currently stores European user data in the U.S. ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Multiple Vulnerabilities Reported in Checkmk IT Infrastructure Monitoring Software]( Multiple vulnerabilities have been disclosed in Checkmk IT Infrastructure monitoring software that could be chained together by an unauthenticated, remote attacker to fully take over affected servers. "These vulnerabilities can be chained together by an unauthenticated, remote attacker to gain ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [These Android Apps with a Million Play Store Installations Redirect Users to Malicious Sites]( A set of four Android apps released by the same developer has been discovered directing victims to malicious websites as part of an adware and information-stealing campaign. The apps, published by a developer named Mobile apps Group and currently available on the Play Store, have been collectively ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Inside Raccoon Stealer V2]( Raccoon Stealer is back on the news again. US officials arrested Mark Sokolovsky, one of the malware actors behind this program. In July 2022, after several months of the shutdown, a Raccoon Stealer V2 went viral. Last week, the Department of Justice's press release stated that the malware ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Experts Warn of SandStrike Android Spyware Infecting Devices via Malicious VPN App]( A previously undocumented Android spyware campaign has been found striking Persian-speaking individuals by masquerading as a seemingly harmless VPN application. Russian cybersecurity firm Kaspersky is tracking the campaign under the moniker SandStrike. It has not been attributed to any particular ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [cover]( [Get Proactive: How to Build a Resilient Cybersecurity Program]( Learn how to get proactive about your organization's cybersecurity posture to prevent attacks from happening. [Download Now]( Sponsored This email was sent to {EMAIL}. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please [click here](. Contact The Hacker News: info@thehackernews.com [Unsubscribe]( The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India