The Hacker News: Weekly Cybersecurity Newsletter

Here are "the top cybersecurity stories you must read now!"

Apple issues urgent warning.

Are your data safe?

MyloBot Botnet goes global.

Is Twitter leaving you exposed?

-----

Accessed on 27 February 2023, 1418 UTC.  Content provided by email subscription to "The Hacker News."  Source:  https://mail.google.com/mail/u/0/#inbox/FMfcgzGrcjWxRSlHZQRfwScJVQTZbBKn ("The Hacker News:  Weekly Cybersecurity Newsletter").

Please click link or scroll down to read your selections.

Russ Roberts (https://www.cybersecurityjournal.net and https://paper.li/RussellRoberts).

The Hacker News
Weekly Cybersecurity Newsletter

Greetings, fellow defenders of digital security!


It's time to fortify our shields and sharpen our swords because the battle against cyber threats never ceases. Welcome to our weekly cybersecurity newsletter, where we bring you the latest and greatest insights, news, and tips to keep your digital kingdom safe from the relentless attacks of hackers and cybercriminals.


So, join us as we dive into the exciting and ever-evolving world of cybersecurity:


1 — iPhone, iPad, and Mac Devices at Risk: Apple Issues Urgent Warning

Apple recently updated its security advisories to include three new vulnerabilities that affect iOS, iPadOS, and macOS. These vulnerabilities could potentially allow bad actors to read arbitrary files or execute code on affected devices. Overall, this highlights the importance of keeping devices and software up-to-date, as these updates often include important security fixes.


2 — Is Your Data Safe? Even Top-Ranked Android Apps Deceive Users

So, some troubling news has come to light about the safety of Android apps on the Google Play Store. Apparently, an investigation has found some pretty serious issues with the data safety labels that are supposed to tell us whether an app is safe to use or not. These labels can apparently be misleading or even completely false, which is definitely cause for concern. It's important for us to be able to trust the information we're given about the apps we download, so this is definitely something we'll want to keep an eye on.


3 — MyloBot Botnet Goes Global: 50K Devices Infected Daily

A new and dangerous botnet called MyloBot is on the loose and spreading rapidly across the globe. This botnet is infecting over 50,000 devices each day and causing havoc for individuals and businesses alike. The malware uses a multi-stage process to infect devices and can spread through various means, including spam emails, phishing websites, and unpatched software vulnerabilities.


4 — Is Twitter Leaving You Exposed? Only Blue Subscribers Get 2FA via SMS!

Twitter has announced that it will limit SMS-based 2-factor authentication (2FA) to its blue subscribers only. This means that users who rely on SMS-based 2FA to secure their Twitter accounts will need to upgrade to a premium subscription to continue using this feature. Twitter recommends that users switch to app-based 2FA methods, such as Google Authenticator, Authy, or Duo Mobile, which are generally more secure than SMS-based 2FA.


The Hacker News / UPCOMING WEBINARS


We're excited to announce two upcoming webinars that we think you won't want to miss.

1. First up, we have a MythBusting Special that will explore and debunk 9 common myths about file-based threats. In this webinar, we'll dive deep into the misconceptions surrounding file-based attacks and provide you with the knowledge and insights you need to protect your organization against these types of threats.

2. Next, we have a webinar that will tackle the top SaaS security challenges of 2023. As more and more organizations move their operations to the cloud, it's crucial to understand the unique security risks that come with using SaaS applications. In this webinar, our experts will discuss the top challenges facing organizations in 2023 and provide you with practical strategies for overcoming them.

We hope you'll join us for both of these informative and engaging webinars.


5 — Coinbase Security Breached: Employee Fooled by SMS Scam

It has been reported that a Coinbase employee was the victim of an SMS scam as part of a cyber attack. While the attack did result in limited data being exposed, it serves as a stark reminder of the importance of remaining vigilant against sophisticated cyber threats. So, what can we learn from this incident? Education and awareness around cybersecurity threats and best practices are crucial to preventing incidents like this from occurring.


6 — Norway Strikes Back: Millions in Cryptocurrency Seized from Hackers!

The Norwegian police agency Økokrim made a big win against cybercriminals when they announced the seizure of $5.84 million worth of cryptocurrency stolen by the notorious Lazarus Group. This successful operation serves as a reminder of the importance of international cooperation in combating cybercrime.


7 — Havoc Framework: Latest Tool in the Arsenal of Cybercriminals!

It seems that threat actors have found a new tool to use in their illegal activities. The tool in question is called Havoc, and it's an open-source command-and-control (C2) framework that is gaining popularity among cybercriminals as an alternative to other well-known legitimate toolkits like Cobalt Strike, Sliver, and Brute Ratel.


8 — Warning: Your Mac Could Be Secretly Mining Cryptocurrency!

A recent discovery by Jamf Threat Labs has shown that hackers are using Trojanized versions of genuine applications to deploy cryptocurrency mining malware on macOS systems. These sneaky attacks are particularly evasive because they use a familiar and trustworthy application to execute their malicious intent.


As we wrap up this week's cybersecurity newsletter, it's important to remember that cybersecurity is not just a topic for IT professionals and security experts. It affects us all, from the way we shop online to the way we communicate with our friends and family.


As the digital world continues to evolve at a rapid pace, we must remain vigilant and proactive in protecting our personal and sensitive information. From staying up-to-date with the latest security measures to practicing good online habits, there are many steps we can take to stay safe in the digital age.


So, as we head into the new week, let's make a commitment to prioritize our online security and do our part to create a safer, more secure digital world for everyone. Remember, cybersecurity is a team effort, and together we can make a real difference.

Comments

Post a Comment

Please leave a comment about our recent post.

Popular posts from this blog

SecurityWeek Briefing.

Image
"Microsoft offers up to $15,000 in New AI Bug Bounty Program." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 13 October 2023, 2020 UTC.  Content provided by email subscription to "SecurityWeek Briefing." Source:  https://mail.google.com/mail/u/0/#inbox/FMfcgzGtxdZHmrfcBkMDJSSNTtHlmhQX ("SecurityWeek Briefing"). Please click link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). SecurityWeek News Briefing | Friday, October 13, 2023 CISA Now Flagging Vulnerabilities, Misconfigurations Exploited by Ransomware Juniper Networks Patches Over 30 Vulnerabilities in Junos OS In Other News : Ex-Uber Security Chief Appeal, New Offerings From Tech Giants, Crypto Bounty Dozens of Squid Proxy Vulnerabilities Remain Unpatched 2 Years After Disclosure Microsoft Offers Up to $15,000 in New AI Bug Bounty Program Researcher Co
Read more

SecurityWeek Briefing.

Image
"Health Care Solutions giant disrupted by Cyberattack." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 19 October 2023, 2033 UTC.  Content provided by email subscription to "SecurityWeek Briefing." Source:  https://mail.google.com/mail/u/0/?tab=rm&ogbl#inbox/FMfcgzGwHLhdlHbpbQJXqhLLSvQbhdnC ("SecurityWeek Briefing"). Please click link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). SecurityWeek News Briefing | Thursday, October 19, 2023 Healthcare Solutions Giant Disrupted by Cyberattack Thousands of Remote IT Workers Sent Wages to North Korea to Help Fund Weapons Program CipherStash Raises $3 Million for Encryption-in-Use Technology US Government Releases Anti-Phishing Guidance Google Play Protect Gets Real-Time Code Scanning Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,00
Read more

Cyber War News Wire.

Image
 "Navy establishes cyber warfare enlisted rating." Views expressed in this cyber war, cybersecurity, cyber espionage update are those of the reporters and correspondents.  Accessed on 02 July 2023, 2311 UTC.  Content provided by EIN Presswire. Source:  https://mail.google.com/mail/u/0/#inbox/FMfcgzGtvsTbTPlbNrgzDpppFbtXwWxF ("Cyber War News Wire" from EIN Presswire). Please click link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). ·  Subscribe  ·  Unsubscribe My Alerts       Cyber War Newswire Got News to Share? Send 2 FREE Releases ↓ Daily update  ·  July 2, 2023     NEWS     Navy Establishes Cyber Warfare Enlisted Rating  Seapower Magazine ***** ARLINGTON, Va. — The U.S. Navy’s effort to expand its cyber warfare capabilities took another step with the establishment of the Cyber Warfare Technician (CWT) rating in its enlisted force.  The CTWs will conduct both offensive and defensive
Read more