Atlassian Confluence RCE Flaw Abused in Multiple Cyberattack Campaigns

The Hacker News Daily Updates New Work Norms, New Cyber Security: Defending Your Hybrid Work Environment | Live Virtual Event | Wed, Oct 28, 2021 | 10:00 AM PT | 1:00 PM ET Download Now Sponsored LATEST NEWS Sep 29, 2021 Beware! This Android Trojan Stole Millions of Dollars from Over 10 Million Users A newly discovered "aggressive" mobile campaign has infected north of 10 million users from over 70 countries via seemingly innocuous Android apps that subscribe the individuals to premium services costing €36 (~$42) per month without their knowledge. Zimperium zLabs dubbed the malicious trojan ... Read More [eBook] Your First 90 Days as CISO — 9 Steps to Success Chief Information Security Officers (CISOs) are an essential pillar of an organization's defense, and they must account for a lot. Especially for new CISOs, this can be a daunting task. The first 90 days for a new CISO are crucial in setting up their security team, so there is little time to waste, ... Read More Hackers Targeting Brazil's PIX Payment System to Drain Users' Bank Accounts Two newly discovered malicious Android applications on Google Play Store have been used to target users of Brazil's instant payment ecosystem in a likely attempt to lure victims into fraudulently transferring their entire account balances into another bank account under cybercriminals' control. ... Read More New FinSpy Malware Variant Infects Windows Systems With UEFI Bootkit Commercially developed FinFisher surveillanceware has been upgraded to infect Windows devices using a UEFI (Unified Extensible Firmware Interface) bootkit using a trojanized Windows Boot Manager, marking a shift in infection vectors that allow it to elude discovery and analysis. Detected in the ... Read More Atlassian Confluence RCE Flaw Abused in Multiple Cyberattack Campaigns Opportunistic threat actors have been found actively exploiting a recently disclosed critical security flaw in Atlassian Confluence deployments across Windows and Linux to deploy web shells that result in the execution of crypto miners on compromised systems. Tracked as CVE-2021-26084 (CVSS score: ... Read More New Work Norms, New Cyber Security: Defending Your Hybrid Work Environment | Live Virtual Event | Wed, Oct 28, 2021 | 10:00 AM PT | 1:00 PM ET Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India