Hackers Exploiting Unpatched WordPress Plugin Flaw to Create Secret Admin Accounts

Hackers Exploiting Unpatched WordPress Plugin Flaw to Create Secret Admin Accounts,

As many as 200,000 WordPress websites are at risk of ongoing attacks exploiting a critical unpatched security vulnerability in the Ultimate Member plugin.
The flaw, tracked as CVE-2023-3460 (CVSS score: 9.8), impacts all versions of the Ultimate Member plugin, including the latest version (2.6.6) that was released on June 29, 2023.
Ultimate Member is a popular plugin that facilitates the

,

As many as 200,000 WordPress websites are at risk of ongoing attacks exploiting a critical unpatched security vulnerability in the Ultimate Member plugin.
The flaw, tracked as CVE-2023-3460 (CVSS score: 9.8), impacts all versions of the Ultimate Member plugin, including the latest version (2.6.6) that was released on June 29, 2023.
Ultimate Member is a popular plugin that facilitates the

, ,
https://thehackernews.com/2023/07/unpatched-wordpress-plugin-flaw-could.html

Beware: New ‘Rustbucket’ Malware Variant Targeting macOS Users

Beware: New ‘Rustbucket’ Malware Variant Targeting macOS Users

,

Researchers have pulled back the curtain on an updated version of an Apple macOS malware called Rustbucket that comes with improved capabilities to establish persistence and avoid detection by security software.
« This variant of Rustbucket, a malware family that targets macOS systems, adds persistence capabilities not previously observed, » Elastic Security Labs researchers said in a report

,

Researchers have pulled back the curtain on an updated version of an Apple macOS malware called Rustbucket that comes with improved capabilities to establish persistence and avoid detection by security software.
« This variant of Rustbucket, a malware family that targets macOS systems, adds persistence capabilities not previously observed, » Elastic Security Labs researchers said in a report

, ,
https://thehackernews.com/2023/07/beware-new-rustbucket-malware-variant.html

Iranian Hackers Charming Kitten Utilize POWERSTAR Backdoor in Targeted Espionage Attacks

Iranian Hackers Charming Kitten Utilize POWERSTAR Backdoor in Targeted Espionage Attacks,

Charming Kitten, the nation-state actor affiliated with Iran’s Islamic Revolutionary Guard Corps (IRGC), has been attributed to a bespoke spear-phishing campaign that delivers an updated version of a fully-featured PowerShell backdoor called POWERSTAR.
« There have been improved operational security measures placed in the malware to make it more difficult to analyze and collect intelligence, »

,

Charming Kitten, the nation-state actor affiliated with Iran’s Islamic Revolutionary Guard Corps (IRGC), has been attributed to a bespoke spear-phishing campaign that delivers an updated version of a fully-featured PowerShell backdoor called POWERSTAR.
« There have been improved operational security measures placed in the malware to make it more difficult to analyze and collect intelligence, »

, ,
https://thehackernews.com/2023/06/iranian-hackers-charming-kitten-utilize.html

3 Reasons SaaS Security is the Imperative First Step to Ensuring Secure AI Usage

3 Reasons SaaS Security is the Imperative First Step to Ensuring Secure AI Usage,

In today’s fast-paced digital landscape, the widespread adoption of AI (Artificial Intelligence) tools is transforming the way organizations operate. From chatbots to generative AI models, these SaaS-based applications offer numerous benefits, from enhanced productivity to improved decision-making. Employees using AI tools experience the advantages of quick answers and accurate results, enabling

,

In today’s fast-paced digital landscape, the widespread adoption of AI (Artificial Intelligence) tools is transforming the way organizations operate. From chatbots to generative AI models, these SaaS-based applications offer numerous benefits, from enhanced productivity to improved decision-making. Employees using AI tools experience the advantages of quick answers and accurate results, enabling

, ,
https://thehackernews.com/2023/06/3-reasons-saas-security-is-imperative.html

WhatsApp Upgrades Proxy Feature Against Internet Shutdowns

WhatsApp Upgrades Proxy Feature Against Internet Shutdowns,

Meta’s WhatsApp has rolled out updates to its proxy feature, allowing more flexibility in the kind of content that can be shared in conversations.
This includes the ability to send and receive images, voice notes, files, stickers and GIFs, WhatsApp told The Hacker News. The new features were first reported by BBC Persian.
Some of the other improvements include streamlined steps to simplify the

,

Meta’s WhatsApp has rolled out updates to its proxy feature, allowing more flexibility in the kind of content that can be shared in conversations.
This includes the ability to send and receive images, voice notes, files, stickers and GIFs, WhatsApp told The Hacker News. The new features were first reported by BBC Persian.
Some of the other improvements include streamlined steps to simplify the

, ,
https://thehackernews.com/2023/06/whatsapp-upgrades-proxy-feature-against.html

Cybercriminals Hijacking Vulnerable SSH Servers in New Proxyjacking Campaign

Cybercriminals Hijacking Vulnerable SSH Servers in New Proxyjacking Campaign,

An active financially motivated campaign is targeting vulnerable SSH servers to covertly ensnare them into a proxy network.
« This is an active campaign in which the attacker leverages SSH for remote access, running malicious scripts that stealthily enlist victim servers into a peer-to-peer (P2P) proxy network, such as Peer2Profit or Honeygain, » Akamai researcher Allen West said in a Thursday

,

An active financially motivated campaign is targeting vulnerable SSH servers to covertly ensnare them into a proxy network.
« This is an active campaign in which the attacker leverages SSH for remote access, running malicious scripts that stealthily enlist victim servers into a peer-to-peer (P2P) proxy network, such as Peer2Profit or Honeygain, » Akamai researcher Allen West said in a Thursday

, ,
https://thehackernews.com/2023/06/cybercriminals-hijacking-vulnerable-ssh.html

MITRE Unveils Top 25 Most Dangerous Software Weaknesses of 2023: Are You at Risk?

MITRE Unveils Top 25 Most Dangerous Software Weaknesses of 2023: Are You at Risk?,

MITRE has released its annual list of the Top 25 « most dangerous software weaknesses » for the year 2023.
« These weaknesses lead to serious vulnerabilities in software, » the U.S. Cybersecurity and Infrastructure Security Agency (CISA) said. « An attacker can often exploit these vulnerabilities to take control of an affected system, steal data, or prevent applications from working. »
The list is

,

MITRE has released its annual list of the Top 25 « most dangerous software weaknesses » for the year 2023.
« These weaknesses lead to serious vulnerabilities in software, » the U.S. Cybersecurity and Infrastructure Security Agency (CISA) said. « An attacker can often exploit these vulnerabilities to take control of an affected system, steal data, or prevent applications from working. »
The list is

, ,
https://thehackernews.com/2023/06/mitre-unveils-top-25-most-dangerous.html

From MuddyC3 to PhonyC2: Iran’s MuddyWater Evolves with a New Cyber Weapon

From MuddyC3 to PhonyC2: Iran’s MuddyWater Evolves with a New Cyber Weapon

,

The Iranian state-sponsored group dubbed MuddyWater has been attributed to a previously unseen command-and-control (C2) framework called PhonyC2 that’s been put to use by the actor since 2021.
Evidence shows that the custom made, actively developed framework has been leveraged in the February 2023 attack on Technion, an Israeli research institute, cybersecurity firm Deep Instinct said in a

,

The Iranian state-sponsored group dubbed MuddyWater has been attributed to a previously unseen command-and-control (C2) framework called PhonyC2 that’s been put to use by the actor since 2021.
Evidence shows that the custom made, actively developed framework has been leveraged in the February 2023 attack on Technion, an Israeli research institute, cybersecurity firm Deep Instinct said in a

, ,
https://thehackernews.com/2023/06/from-muddyc3-to-phonyc2-irans.html

Fluhorse: Flutter-Based Android Malware Targets Credit Cards and 2FA Codes

Fluhorse: Flutter-Based Android Malware Targets Credit Cards and 2FA Codes,

Cybersecurity researchers have shared the inner workings of an Android malware family called Fluhorse.
The malware « represents a significant shift as it incorporates the malicious components directly within the Flutter code, » Fortinet FortiGuard Labs researcher Axelle Apvrille said in a report published last week.
Fluhorse was first documented by Check Point in early May 2023, detailing its

,

Cybersecurity researchers have shared the inner workings of an Android malware family called Fluhorse.
The malware « represents a significant shift as it incorporates the malicious components directly within the Flutter code, » Fortinet FortiGuard Labs researcher Axelle Apvrille said in a report published last week.
Fluhorse was first documented by Check Point in early May 2023, detailing its

, ,
https://thehackernews.com/2023/06/fluhorse-flutter-based-android-malware.html

The Right Way to Enhance CTI with AI (Hint: It’s the Data)

The Right Way to Enhance CTI with AI (Hint: It’s the Data)

,

Cyber threat intelligence is an effective weapon in the ongoing battle to protect digital assets and infrastructure – especially when combined with AI. But AI is only as good as the data feeding it. Access to unique, underground sources is key.
Threat Intelligence offers tremendous value to people and companies. At the same time, its ability to address organizations’ cybersecurity needs and the

,

Cyber threat intelligence is an effective weapon in the ongoing battle to protect digital assets and infrastructure – especially when combined with AI. But AI is only as good as the data feeding it. Access to unique, underground sources is key.
Threat Intelligence offers tremendous value to people and companies. At the same time, its ability to address organizations’ cybersecurity needs and the

, ,
https://thehackernews.com/2023/06/the-right-way-to-enhance-cti-with-ai.html