In The News

ANEL and NOOPDOOR Backdoors Weaponized in New MirrorFace Campaign Against Japan The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 5, 2024

The China-linked threat actor known as MirrorFace has been attributed to a new spear-phishing campaign mainly targeting individuals and organizations in Japan since June 2024. The aim of the campaign is …


NCA Busts Russian Crypto Networks Laundering Funds and Evading Sanctions The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 4, 2024

The U.K. National Crime Agency (NCA) on Wednesday announced that it led an international investigation to disrupt Russian money laundering networks that were found to facilitate serious and organized crime …


CISA Warns of Active Exploitation of Flaws in Zyxel, ProjectSend, and CyberPanel The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 4, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added multiple security flaws affecting products from Zyxel, North Grid Proself, ProjectSend, and CyberPanel to its Known Exploited Vulnerabilities (KEV) catalog, citing …


Russia-Linked Turla Exploits Pakistani Hackers’ Servers to Target Afghan and Indian Entities The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 4, 2024

The Russia-linked advanced persistent threat (APT) group known as Turla has been linked to a previously undocumented campaign that involved infiltrating the command-and-control (C2) servers of a Pakistan-based hacking group …


U.S. Offered $10M for Hacker Just Arrested by Russia Krebs on SecurityBrianKrebs
December 4, 2024

In January 2022, KrebsOnSecurity identified a Russian man named Mikhail Matveev as "Wazawaka," a cybercriminal who was deeply involved in the formation and operation of multiple ransomware groups. The U.S. …


Europol Dismantles Criminal Messaging Service MATRIX in Major Global Takedown The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 4, 2024

Europol on Tuesday announced the takedown of an invite-only encrypted messaging service called MATRIX that's created by criminals for criminal purposes. The joint operation, conducted by French and Dutch authorities under …


7 PAM Best Practices to Secure Hybrid and Multi-Cloud Environments The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 4, 2024

Are you using the cloud or thinking about transitioning? Undoubtedly, multi-cloud and hybrid environments offer numerous benefits for organizations. However, the cloud's flexibility, scalability, and efficiency come with significant risk …


How to Plan a New (and Improved!) Password Policy for Real-World Security Challenges The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 4, 2024

Many organizations struggle with password policies that look strong on paper but fail in practice because they're too rigid to follow, too vague to enforce, or disconnected from real security …


Researchers Uncover Backdoor in Solana’s Popular Web3.js npm Library The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 4, 2024

Cybersecurity researchers are alerting to a software supply chain attack targeting the popular @solana/web3.js npm library that involved pushing two malicious versions capable of harvesting users' private keys with an …


Joint Advisory Warns of PRC-Backed Cyber Espionage Targeting Telecom Networks The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 3, 2024

A joint advisory issued by Australia, Canada, New Zealand, and the U.S. has warned of a broad cyber espionage campaign undertaken by People's Republic of China (PRC)-affiliated threat actors targeting …