Hackers Using Malicious Browser Extension to Spy on Email Accounts

The Hacker News Daily Updates Take Control of Security Operations with Consolidation and XDR The early results are in. With consolidation and an effective XDR solution, organizations can greatly improve their cybersecurity. Download Now Sponsored LATEST NEWS Jul 30, 2022 Microsoft Links Raspberry Robin USB Worm to Russian Evil Corp Hackers Microsoft on Friday disclosed a potential connection between the Raspberry Robin USB-based worm and an infamous Russian cybercrime group tracked as Evil Corp. The tech giant said it observed the FakeUpdates (aka SocGholish) malware being delivered via existing Raspberry Robin infections on July ... Read More North Korean Hackers Using Malicious Browser Extension to Spy on Email Accounts A threat actor operating with interests aligned with North Korea has been deploying a malicious extension on Chromium-based web browsers that's capable of stealing email content from Gmail and AOL. Cybersecurity firm Volexity attributed the malware to an activity cluster it calls SharpTongue, ... Read More CISA Warns of Atlassian Confluence Hard-Coded Credential Bug Exploited in Attacks The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added the recently disclosed Atlassian security flaw to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. The vulnerability, tracked as CVE-2022-26138, concerns the use of hard-coded ... Read More Over a Dozen Android Apps on Google Play Store Caught Dropping Banking Malware A malicious campaign leveraged seemingly innocuous Android dropper apps on the Google Play Store to compromise users' devices with banking malware. These 17 dropper apps, collectively dubbed DawDropper by Trend Micro, masqueraded as productivity and utility apps such as document scanners, QR code ... Read More Dahua IP Camera Vulnerability Could Let Attackers Take Full Control Over Devices Details have been shared about a security vulnerability in Dahua's Open Network Video Interface Forum (ONVIF) standard implementation, which, when exploited, can lead to seizing control of IP cameras.  Tracked as CVE-2022-30563 (CVSS score: 7.4), the "vulnerability could be abused by attackers to ... Read More How quickly can you recover Kubernetes environments after a ransomware attack? Now on demand! Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India

Experts Notice Rise in Phishing Attacks Using Decentralized IPFS Network

The Hacker News Daily Updates How Social Disruption Drives Contact Center Fraud And, how to fight back, with stronger identity and credibility checks. Download Now Sponsored LATEST NEWS Jul 29, 2022 Dahua IP Camera Vulnerability Could Let Attackers Take Full Control Over Devices Details have been shared about a security vulnerability in Dahua's Open Network Video Interface Forum (ONVIF) standard implementation, which, when exploited, can lead to seizing control of IP cameras.  Tracked as CVE-2022-30563 (CVSS score: 7.4), the "vulnerability could be abused by attackers to ... Read More Researchers Warns of Increase in Phishing Attacks Using Decentralized IPFS Network The decentralized file system solution known as IPFS is becoming the new "hotbed" for hosting phishing sites, researchers have warned. Cybersecurity firm Trustwave SpiderLabs, which disclosed specifics of the attack campaigns, said it identified no less than 3,000 emails containing IPFS phishing ... Read More How to Combat the Biggest Security Risks Posed by Machine Identities The rise of DevOps culture in enterprises has accelerated product delivery timelines. Automation undoubtedly has its advantages. However, containerization and the rise of cloud software development are exposing organizations to a sprawling new attack surface. Machine identities vastly outnumber ... Read More Spanish Police Arrest 2 Nuclear Power Workers for Cyberattacking the Radiation Alert System Spanish law enforcement officials have announced the arrest of two individuals in connection with a cyberattack on the country's radioactivity alert network (RAR), which took place between March and June 2021. The act of sabotage is said to have disabled more than one-third of the sensors that are ... Read More Latest Critical Atlassian Confluence Vulnerability Under Active Exploitation A week after Atlassian rolled out patches to contain a critical flaw in its Questions For Confluence app for Confluence Server and Confluence Data Center, the shortcoming has now come under active exploitation in the wild. The bug in question is CVE-2022-26138, which concerns the use of a ... Read More Remote Work and Data Privacy for Employees Why Employees Must Take a Proactive Approach to Protect Workers’ Personal Information in a Post-Pandemic World Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India