Cyber Security weekly hacker news January 25 – 31, 2022 | cybersecuritynews

Cyber Security weekly hacker news January 25 – 31, 2022
00:00 intro
00:26 PHISHING
00:30 North Korea-linked Lazarus APT used Windows Update client and GitHub in recent attacks
02:31 A new highly evasive technique used to deliver the AsyncRAT Malware
04:28 PATCHES
04:30 Apple released security updates to fix two zero-day flaws, one of them actively exploited to hack iPhones and Macs.
06:22 QNAP force-installs update against the recent wave of DeadBolt ransomware infections
08:30 PrinterLogic fixes high severity flaws in Printer Management Suite
10:09 ATTACKS VULNERABILITIES & UPDATES
10:14 Segway e-store compromised in a Magecart attack to steal credit cards
11:38 Finnish diplomats’ devices infected with Pegasus spyware
12:40 Zerodium offers $400,000 for Microsoft Outlook RCE zero-day exploits
13:49 Delta Electronics, a tech giants’ contractor, hit by Conti ransomware
14:40 Experts devise a technique to bypass Microsoft Outlook Security feature
16:17 Puerto Rico was hit by a major cyberattack
17:27 Popular apps left biometric data, IDs of millions of users in danger
20:34 Microsoft mitigated a 3.47 Tbps DDoS attack, the largest one to date
21:33 Lockbit ransomware gang claims to have hacked Ministry of Justice of France
22:33 Experts analyze first LockBit ransomware for Linux and VMware ESXi
23:45 New DeadBolt ransomware targets QNAP NAS devices
25:42 A flaw in Rust Programming language could allow to delete files and directories
46:00 Tens of AccessPress WordPress themes compromised as part of a supply chain attack
27:47 VMware urges customers to patch VMware Horizon servers against Log4j attacks
30:44 PwnKit: Local Privilege Escalation bug affects major Linux distros
33:10 Sophisticated attackers used DazzleSpy macOS backdoor in watering hole attacks
35:41 Attackers are actively targeting critical RCE bug in SonicWall Secure Mobile Access
36:56 Latest version of Android RAT BRATA wipes devices after stealing data
39:19 Emotet spam uses unconventional IP address formats to evade detection
41:03 Crooks tampering with QR Codes to steal victim money and info, FBI warns
41:58 OTHER SECURITY NEWS
42:03 US FCC bans China Unicom Americas telecom over national security risks
42:44 Russian authorities arrested the kingpin of cybercrime Infraud Organization
44:48 NCSC warns UK entities of potential destructive cyberattacks from Russia
45:47 German intelligence agency warns of China-linked APT27 targeting commercial organizations
47:26 THANKS FOR WATCHING
#cybersecuritynews #cybersecurity #hackernews

source