New malware used by SolarWinds attackers went undetected for years.

Views expressed in this cybersecurity-cybercrime update are those of the reporters and correspondents.

Accessed on 03 February 2022, 0211 UTC.

Content provided by email subscription to “The Hacker News Daily Updates.”

Source:

https://mail.google.com/mail/u/0/#inbox/FMfcgzGmthmZlPcLmZxCrfswdHhbpKlc

Please click link or scroll down to read your selections.

The Hacker News Daily Updates
Great eXpeltations: Cybersecurity Trends and Predictions for 2022

February 09, 2022 @ 2PM EDT

Download Now Sponsored
LATEST NEWS Feb 2, 2022
New Malware Used by SolarWinds Attackers Went Undetected for Years

The threat actor behind the supply chain compromise of SolarWinds has continued to expand its malware arsenal with new tools and techniques that were deployed in attacks as early as 2019, once indicative of the elusive nature of the campaigns and the adversary’s ability to maintain persistent …

Read More
Cynet’s Keys to Extend Threat Visibility

We hear about the need for better visibility in the cybersecurity space – detecting threats earlier and more accurately. We often hear about the dwell time and the time to identify and contain a data breach. Many of us are familiar with IBM’s Cost of a Data Breach Report that has been tracking …

Read More
Dozens of Security Flaws Discovered in UEFI Firmware Used by Several Vendors

As many as 23 new high severity security vulnerabilities have been disclosed in different implementations of Unified Extensible Firmware Interface (UEFI) firmware used by numerous vendors, including Bull Atos, Fujitsu, HP, Juniper Networks, Lenovo, among others. The vulnerabilities reside in …

Read More
Hacker Group ‘Moses Staff’ Using New StrifeWater RAT in Ransomware Attacks

A politically motivated hacker group tied to a series of espionage and sabotage attacks on Israeli entities in 2021 incorporated a previously undocumented remote access trojan (RAT) that masquerades as the Windows Calculator app as part of a conscious effort to stay under the radar. Cybersecurity …

Read More
Critical Bug Found in WordPress Plugin for Elementor with Over a Million Installations

A WordPress plugin with over one million installs has been found to contain a critical vulnerability that could result in the execution of arbitrary code on compromised websites. The plugin in question is Essential Addons for Elementor, which provides WordPress site owners with a library of over …

Read More
Great eXpeltations: Cybersecurity Trends and Predictions for 2022

February 09, 2022 @ 2PM EDT

Download Now Sponsored

For the latest cybersecurity news and information, please check the blog sidebar, links, and twitter posts.

Thanks for joining us today.

Russ Roberts (https://atomic-temporary-195915488.wpcomstaging.com).