Brazil faces a new wave of cyberattacks targeting mobile users with Rocinante, an Android banking trojan. Read: thehackernews.com/2024/09/rocina… Act now—educate your teams about this threat and review your security protocols.

A new #ransomware variant, Cicada3301, is making headlines for its advanced tactics and SMB focus. Cicada3301 not only targets Windows and #Linux/ESXi systems but also embeds compromised user credentials for further exploitation. thehackernews.com/2024/09/new-ru… #cybersecurity #hacking

A hacktivist group called Head Mare has been linked to sophisticated cyberattacks targeting organizations in Russia and Belarus. Victims span industries like government, energy, and manufacturing. Read: thehackernews.com/2024/09/hackti… #cybersecurity #hacking

A $40B data analytics company suffered a major breach after a secret was accidentally shared in a Jira comment, underscoring the urgent need to rethink secret management as they spread across tools like Slack and Confluence, doubling the attack surface. thehackernews.com/2024/09/secret…

A new #malware campaign is spoofing Palo Alto Networks' GlobalProtect VPN to deliver WikiLoader via SEO malvertising. Learn more to update your defenses and stay ahead of these evolving threats: thehackernews.com/2024/09/hacker… #cybersecurity

Clearview AI has been hit with a €30.5M fine for scraping billions of facial images without consent. Dutch authorities are even investigating personal liability for Clearview's management. Read: thehackernews.com/2024/09/clearv… #cybersecurity #privacy

Zyxel has patched a critical #vulnerability (CVE-2024-7261) that allowed unauthenticated attackers to execute OS commands on certain routers and access points. Learn more: thehackernews.com/2024/09/zyxel-… #CyberSecurity

#Google has issued a update to fix the high-severity Android #vulnerability CVE-2024-32896, which allows attackers to take control of your device. Initially affecting Pixel devices, it now impacts the entire #Android ecosystem. Read: thehackernews.com/2024/09/google… #infosec #hacking

Account takeover attacks are increasing in SaaS environments, with browsers being the key battleground. A new report highlights how browser security can prevent phishing, malicious extensions, and credential theft. Learn more now: thehackernews.com/2024/09/the-ne… #cybersecurity

North Korean hackers are using fake video conferencing apps, like FreeConference, in job interview scams to deliver #malware capable of remote control, browser data theft, and #cryptocurrency wallet hacking. Read: thehackernews.com/2024/09/north-… #hacking #cybersecurity

New supply chain attack, Revival Hijack, could target 22,000+ PyPI packages, risking thousands of malicious downloads. Removed packages are being re-registered, exposing developers to supply chain risks. Check your #DevOps pipelines! thehackernews.com/2024/09/hacker… #cybersecurity

Cisco has issued urgent updates for two critical flaws (CVSS 9.8) in its Smart Licensing Utility. These flaws (CVE-2024-20439 & CVE-2024-20440) let unauthenticated attackers elevate privileges or access sensitive data via crafted HTTP requests. Read: thehackernews.com/2024/09/cisco-…

Earth Lusca's KTLVdoor malware targets Windows & #Linux, enabling file manipulation and remote scanning via 50+ command-and-control servers, likely shared with other threat actors. Learn more: thehackernews.com/2024/09/new-cr… #Cybersecurity #Malware

🚨 Mindblowing numbers alert! 🚨 According to recent research, 45% of employees still have access to their ex-employer’s data, and over 25% of companies have had their reputations damaged due to ex-employees misusing data after leaving the company 🤡 Want to make sure your

DOJ seized 32 pro-Russian propaganda domains that mimicked news outlets to spread disinformation. The goal: reduce global support for Ukraine and influence elections in the U.S. and abroad. Learn more: thehackernews.com/2024/09/us-sei… #infosec #cybersecurity

9 Ways to Uncover Shadow AI Discover how to enforce AI security best practices with this sample report from Wiz. Read; thn.news/ai-security-as… #infosec #artificialintelligence

🔐 NIST released CSF 2.0! It’s all about continuous improvement with proactive, ongoing cybersecurity. New guidance on emerging threats + a “Govern” function to integrate cybersecurity into enterprise risk. Is your org ready? Learn more: thehackernews.com/2024/09/nist-c… #infosec #tech

⚠️ Veeam has patched 18 security flaws, including 5 critical ones allowing remote code execution (e.g., CVE-2024-40711 with a 9.8 CVSS score). Update now to protect your data. Learn more: thehackernews.com/2024/09/veeam-… #cybersecurity #technology

Tropic Trooper is back, targeting government entities in the Middle East and Malaysia with new cyber tactics! Detected in June 2024, this group has shifted focus to human rights studies—escalating the risk. Find details here: thehackernews.com/2024/09/chines… #infosec #cybersecurity