Hackers Exploit Microsoft Browser Bug to Deploy VBA Malware on Targeted PCs

The Hacker News Daily Updates The Threat Hunter's Handboook Using Log Analytics to Find and Neutralize Hidden Threats in Your Environment Download Now Sponsored LATEST NEWS Jul 30, 2021 Experts Uncover Several C&C Servers Linked to WellMess Malware Cybersecurity researchers on Friday unmasked new command-and-control (C2) infrastructure belonging to the Russian threat actor tracked as APT29, aka Cozy Bear, that has been spotted actively serving WellMess malware as part of an ongoing attack campaign. More than 30 C2 servers operated by the ... Read More Several Malicious Typosquatted Python Libraries Found On PyPI Repository As many as eight Python packages that were downloaded more than 30,000 times have been removed from the PyPI portal for containing malicious code, once again highlighting how software package repositories are evolving into a popular target for supply chain attacks. "Lack of moderation and automated ... Read More A New Wiper Malware Was Behind Recent Cyberattack On Iranian Train System A cyber attack that derailed websites of Iran's transport ministry and its national railway system earlier this month, causing widespread disruptions in train services, was the result of a never-before-seen reusable wiper malware called "Meteor." The campaign — dubbed "MeteorExpress" — has not been ... Read More Phony Call Centers Tricking Users Into Installing Ransomware and Data-Stealers An ongoing malicious campaign that employs phony call centers has been found to trick victims into downloading malware capable of data exfiltration as well as deploying ransomware on infected systems. The attacks — dubbed "BazaCall" — eschew traditional social engineering techniques that rely on ... Read More Hackers Exploit Microsoft Browser Bug to Deploy VBA Malware on Targeted PCs An unidentified threat actor has been exploiting a now-patched zero-day flaw in Internet Explorer browser to deliver a fully-featured VBA-based remote access trojan (RAT) capable of accessing files stored in compromised Windows systems, and downloading and executing malicious payloads as part of an ... Read More The Threat Hunter's Handboook Using Log Analytics to Find and Neutralize Hidden Threats in Your Environment Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India

UBEL is the New Oscorp — Android Credential Stealing Malware Active in the Wild

The Hacker News Daily Updates Deep Learning for Beginners ($27.99 Value) FREE for a Limited Time With information on the web exponentially increasing, it has become more difficult than ever to navigate through everything to find reliable content that will help you get started with deep learning. Download Now Sponsored LATEST NEWS Jul 29, 2021 New Ransomware Gangs — Haron and BlackMatter — Emerge on Cybercrime Forums Two new ransomware-as-service (RaaS) programs have appeared on the threat radar this month, with one group professing to be a successor to DarkSide and REvil, the two infamous ransomware syndicates that went off the grid following major attacks on Colonial Pipeline and Kaseya over the past few ... Read More Best Practices to Thwart Business Email Compromise (BEC) Attacks Business email compromise (BEC) refers to all types of email attacks that do not have payloads. Although there are numerous types, there are essentially two main mechanisms through which attackers penetrate organizations utilizing BEC techniques, spoofing and account take-over attacks. In a ... Read More New Android Malware Uses VNC to Spy and Steal Passwords from Victims A previously undocumented Android-based remote access trojan (RAT) has been found to use screen recording features to steal sensitive information on the device, including banking credentials, and open the door for on-device fraud. Dubbed "Vultur" due to its use of Virtual Network Computing (VNC)'s ... Read More Top 30 Critical Security Vulnerabilities Most Exploited by Hackers Intelligence agencies in Australia, the U.K., and the U.S. issued a joint advisory on Wednesday detailing the most exploited vulnerabilities in 2020 and 2021, once again demonstrating how threat actors are able to weaponize publicly disclosed flaws to their advantage swiftly. "Cyber actors continue ... Read More UBEL is the New Oscorp — Android Credential Stealing Malware Active in the Wild An Android malware that was observed abusing accessibility services in the device to hijack user credentials from European banking applications has morphed into an entirely new botnet as part of a renewed campaign that began in May 2021. Italy's CERT-AGID, in late January, disclosed details ... Read More Deep Learning for Beginners ($27.99 Value) FREE for a Limited Time With information on the web exponentially increasing, it has become more difficult than ever to navigate through everything to find reliable content that will help you get started with deep learning. Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India