From
nl00.net
Email Address
news@news.nl00.net
Sent On
Tue, May 9, 2023 12:14 PM
Email Preheader Text
The Hacker News Daily Updates Join us for an insightful session on using deception to outsmart adver
HTML
The Hacker News Daily Updates
[Newsletter]( [cover]( [THN Webinar: Extend Zero Trust with Deception-based Active Defense]( Join us for an insightful session on using deception to outsmart adversaries in your Zero Trust environment! [Download Now]( Sponsored LATEST NEWS May 9, 2023 [Researchers Uncover SideWinder's Latest Server-Based Polymorphism Technique]( The advanced persistent threat (APT) actor known as SideWinder has been accused of deploying a backdoor in attacks directed against Pakistan government organizations as part of a campaign that commenced in late November 2022. "In this campaign, the SideWinder advanced persistent threat (APT) group used a server-based polymorphism technique to deliver the next stage payload," the ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [Microsoft Warns of State-Sponsored Attacks Exploiting Critical PaperCut Vulnerability]( Iranian nation-state groups have now joined financially motivated actors in actively exploiting a critical flaw in PaperCut print management software, Microsoft said. The tech giant's threat intelligence team said it observed both Mango Sandstorm (Mercury) and Mint Sandstorm (Phosphorus) weaponizing CVE-2023-27350 in their operations to achieve initial access. "This activity shows ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [New Ransomware Strain 'CACTUS' Exploits VPN Flaws to Infiltrate Networks]( Cybersecurity researchers have shed light on a new ransomware strain called CACTUS that has been found to leverage known flaws in VPN appliances to obtain initial access to targeted networks. "Once inside the network, CACTUS actors attempt to enumerate local and network user accounts in addition to reachable endpoints before creating new user accounts and leveraging custom scripts to ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [Join Our Webinar: Learn How to Defeat Ransomware with Identity-Focused Protection]( Are you concerned about ransomware attacks? You're not alone. In recent years, these attacks have become increasingly common and can cause significant damage to organizations of all sizes. But there's good news - with the right security measures in place, such as real-time MFA and service account protection, you can effectively protect yourself against these types of attacks. That's why ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [MSI Data Breach: Private Code Signing Keys Leaked on the Dark Web]( The threat actors behind the ransomware attack on Taiwanese PC maker MSI last month have leaked the company's private code signing keys on their dark website. "Confirmed, Intel OEM private key leaked, causing an impact on the entire ecosystem," Alex Matrosov, founder and CEO of firmware security firm Binarly, said in a tweet over the weekend. "It appears that Intel Boot Guard may not ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [Western Digital Confirms Customer Data Stolen by Hackers in March Breach]( Digital storage giant Western Digital confirmed that an "unauthorized third party" gained access to its systems and stole personal information belonging to the company's online store customers. "This information included customer names, billing and shipping addresses, email addresses and telephone numbers," the San Jose-based company said in a disclosure last week. "In addition, the ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [SideCopy Using Action RAT and AllaKore RAT to infiltrate Indian Organizations]( The suspected Pakistan-aligned threat actor known as SideCopy has been observed leveraging themes related to the Indian military research organization as part of an ongoing phishing campaign. This involves using a ZIP archive lure pertaining to India's Defence Research and Development Organization (DRDO) to deliver a malicious payload capable of harvesting sensitive information, ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [How to Set Up a Threat Hunting and Threat Intelligence Program]( Threat hunting is an essential component of your cybersecurity strategy. Whether you're getting started or in an advanced state, this article will help you ramp up your threat intelligence program. What is Threat Hunting? The cybersecurity industry is shifting from a reactive to a proactive approach. Instead of waiting for cybersecurity alerts and then addressing them, security organizations ... [Read More](
[Twitter]( [Facebook]( [LinkedIn]( [cover]( [THN Webinar: Extend Zero Trust with Deception-based Active Defense]( Join us for an insightful session on using deception to outsmart adversaries in your Zero Trust environment! [Download Now]( Sponsored This email was sent to {EMAIL}. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please [click here](. Contact The Hacker News: info@thehackernews.com
[Unsubscribe]( The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India
EDM Keywords (47)
weekend
waiting
types
tweet
systems
sponsored
sizes
sidewinder
sidecopy
shifting
set
sent
receiving
read
reactive
ramp
place
part
organizations
opted
operations
observed
newsletter
manage
leaked
inside
india
impact
help
hackers
found
email
deploying
deliver
contact
concerned
company
commenced
ceo
campaign
backdoor
attacks
article
appears
alone
addressing
addition
accused