From
nl00.net
Email Address
news@news.nl00.net
Sent On
Sat, Feb 18, 2023 01:09 PM
Email Preheader Text
The Hacker News Daily Updates Gain a comprehensive understanding of cyber insurance protection. Spon
HTML
The Hacker News Daily Updates
[Newsletter]( [cover]( [Understanding Cyber Insurance Identity Security Requirements for 2023]( Gain a comprehensive understanding of cyber insurance protection. [Download Now]( Sponsored LATEST NEWS Feb 18, 2023 [Twitter Limits SMS-Based 2-Factor Authentication to Blue Subscribers Only]( Twitter has announced that it's limiting the use of SMS-based two-factor authentication (2FA) to its Blue subscribers. "While historically a popular form of 2FA, unfortunately we have seen phone-number based 2FA be used â and abused â by bad actors," the company said. "We will no longer allow accounts to enroll in the text message/SMS method of 2FA unless they are Twitter Blue ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [GoDaddy Discloses Multi-Year Security Breach Causing Malware Installations and Source Code Theft]( Web hosting services provider GoDaddy on Friday disclosed a multi-year security breach that enabled unknown threat actors to install malware and siphon source code related to some of its services. The company attributed the campaign to a "sophisticated and organized group targeting hosting services." GoDaddy said in December 2022, it received an unspecified number of customer complaints ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [Experts Warn of RambleOn Android Malware Targeting South Korean Journalists]( Suspected North Korean nation-state actors targeted a journalist in South Korea with a malware-laced Android app as part of a social engineering campaign. The findings come from South Korea-based non-profit Interlab, which coined the new malware RambleOn. The malicious functionalities include the "ability to read and leak target's contact list, SMS, voice call content, location and others ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [â¡Top Cybersecurity News Stories This Week â Cybersecurity Newsletter]( Hey ð there, cyber friends! Welcome to this week's cybersecurity newsletter, where we aim to keep you informed and empowered in the ever-changing world of cyber threats. In today's edition, we will cover some interesting developments in the cybersecurity landscape and share some insightful analysis of each to help you protect yourself against potential attacks. 1. Apple ð± Devices Hacked ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [Armenian Entities Hit by New Version of OxtaRAT Spying Tool]( Entities in Armenia have come under a cyber attack using an updated version of a backdoor called OxtaRAT that allows remote access and desktop surveillance. "The tool capabilities include searching for and exfiltrating files from the infected machine, recording the video from the web camera and desktop, remotely controlling the compromised machine with TightVNC, installing a web ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [New Mirai Botnet Variant 'V3G4' Exploiting 13 Flaws to Target Linux and IoT Devices]( A new variant of the notorious Mirai botnet has been found leveraging several security vulnerabilities to propagate itself to Linux and IoT devices. Observed during the second half of 2022, the new version has been dubbed V3G4 by Palo Alto Networks Unit 42, which identified three different campaigns likely conducted by the same threat actor. "Once the vulnerable devices are compromised, ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [Critical RCE Vulnerability Discovered in ClamAV Open Source Antivirus Software]( Cisco has rolled out security updates to address a critical flaw reported in the ClamAV open source antivirus engine that could lead to remote code execution on susceptible devices. Tracked as CVE-2023-20032 (CVSS score: 9.8), the issue relates to a case of remote code execution residing in the HFS+ file parser component. The flaw affects versions 1.0.0 and earlier, 0.105.1 and earlier, ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [Researchers Hijack Popular NPM Package with Millions of Downloads]( A popular npm package with more than 3.5 million weekly downloads has been found vulnerable to an account takeover attack. "The package can be taken over by recovering an expired domain name for one of its maintainers and resetting the password," software supply chain security company Illustria said in a report. While npm's security protections limit users to have only one active email ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [cover]( [Understanding Cyber Insurance Identity Security Requirements for 2023]( Gain a comprehensive understanding of cyber insurance protection. [Download Now]( Sponsored This email was sent to {EMAIL}. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please [click here](. Contact The Hacker News: info@thehackernews.com
[Unsubscribe]( The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India
EDM Keywords (54)
week
video
used
use
twitter
today
taken
sponsored
sophisticated
share
services
sent
rolled
resetting
report
recovering
receiving
received
read
protect
propagate
part
package
opted
one
npm
newsletter
millions
manage
maintainers
linux
limiting
keep
journalist
informed
historically
help
enroll
empowered
email
edition
downloads
cover
contact
come
coined
case
campaign
armenia
announced
aim
address
abused
ability
2022