Install Latest Windows Update ASAP! 6 New Zero-Days Under Attacks

The Hacker News Daily Updates Creating an Effective Incident Response Plan The Rise in Material Breaches Download Now Sponsored LATEST NEWS Nov 9, 2022 APT29 Exploited a Windows Feature to Compromise European Diplomatic Entity Network The Russia-linked APT29 nation-state actor has been found leveraging a "lesser-known" Windows feature called Credential Roaming as part of its attack against an unnamed European diplomatic entity. "The diplomatic-centric targeting is consistent with Russian strategic priorities as well as historic ... Read More Several Cyber Attacks Observed Leveraging IPFS Decentralized Network A number of phishing campaigns are leveraging the decentralized Interplanetary Filesystem (IPFS) network to host malware, phishing kit infrastructure, and facilitate other attacks. "Multiple malware families are currently being hosted within IPFS and retrieved during the initial stages of malware ... Read More New Edition: Declarative Cloud Infrastructure Management with Terraform Understand the underlying concepts of Terraform, declarative cloud infrastructure management, and key basics of the Hashicorp Configuration Language. Also covered: why and when you should use Linode Kubernetes Engine + Terraform together, plus Packer explained. Download ... Read More Experts Warn of Browser Extensions Spying On Users via Cloud9 Chrome Botnet Network The Keksec threat actor has been linked to a previously undocumented malware strain, which has been observed in the wild masquerading as an extension for Chromium-based web browsers to enslave compromised machines into a botnet. Called Cloud9 by security firm Zimperium, the malicious browser ... Read More Top 5 API Security Myths That Are Crushing Your Business There are several myths and misconceptions about API security. These myths about securing APIs are crushing your business.  Why so? Because these myths are widening your security gaps. This is making it easier for attackers to abuse APIs. And API attacks are costly. Of course, you will have to ... Read More New IceXLoader Malware Loader Variant Infected Thousands of Victims Worldwide An updated version of a malware loader codenamed IceXLoader is suspected of having compromised thousands of personal and enterprise Windows machines across the world. IceXLoader is a commodity malware that's sold for $118 on underground forums for a lifetime license. It's chiefly employed to ... Read More VMware Warns of 3 New Critical Flaws Affecting Workspace ONE Assist Software VMware has patched five security flaws affecting its Workspace ONE Assist solution, some of which could be exploited to bypass authentication and obtain elevated permissions. Topping the list are three critical vulnerabilities tracked as CVE-2022-31685, CVE-2022-31686, and CVE-2022-31687. All the ... Read More Install Latest Windows Update ASAP! Patches Issued for 6 Actively Exploited Zero-Days Microsoft's latest round of monthly security updates has been released with fixes for 68 vulnerabilities spanning its software portfolio, including patches for six actively exploited zero-days. 12 of the issues are rated Critical, two are rated High, and 55 are rated Important in severity. This ... Read More Creating an Effective Incident Response Plan The Rise in Material Breaches Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India