Security Affairs newsletter Round 300

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the international press subscribe here.

Experts explain how to bypass recent improvement of Chinas Great Firewall

New Pro-Ocean crypto-miner targets Apache ActiveMQ, Oracle WebLogic, and Redis installs

Experts discovered a new Trickbot module used for lateral movement

Experts warn of active exploitation of SonicWall zero-day in the wild

Exploiting a bug in Azure Functions to escape Docker

Google discloses a severe flaw in widely used Libgcrypt encryption library

Operation NightScout: supply chain attack on NoxPlayer Android emulator

CISA: Many victims of SolarWinds hackers had no direct connection to SolarWinds

Cyber Defense Magazine – February 2021 has arrived. Enjoy it!

Kobalos, a complex Linux malware targets high-performance computing clusters

Ransomware operators exploit VMWare ESXi flaws to encrypt disks of VMs

Alleged China-linked hackers used SolarWinds bug to breach National Finance Center

Hackers stole personnel records of software developer Wind River

Recently discovered CVE-2021-3156 SUDO bug also affects macOS Big Sur

TIMs Red Team Research (RTR) discovered 2 new zero-day vulnerabilities in WordPress Plugin Limit Login Attempts Reloaded

Cisco fixes critical remote code execution issues in SMB VPN routers

Google addresses Chrome zero-day flaw actively exploited in the wild

Hackers accessed Stormshield data, including source code of ANSSI certified products

Matryosh DDoS botnet targets Android-Based devices via ADB

SonicWall released patch for actively exploited SMA 100 zero-day

Fortinet addresses 4 vulnerabilities in FortiWeb web application firewalls

Forward Air Corporation says that December Ransomware attack caused a loss of $7.5M

Hackers abuse Plex Media servers for DDoS amplification attacks

TeamTNT group uses Hildegard Malware to target Kubernetes Systems

Experts found critical flaws in Realtek Wi-Fi Module

Packaging giant WestRock is still working to resume after recent Ransomware Attack

Watch out! ‘The Great Suspender Chrome extension contains Malware

If you want to also receive for free the international press subscribe here.

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Next The number of ICS flaws in 2020 was 24,72% higher compared to 2019 »

Previous « Web developers SitePoint discloses a data breach

Published by

Pierluigi Paganini

Tags: data breachHackinghacking newsinformation security newsIT Information SecuritymalwareNewsletterPierluigi PaganiniransomwareSecurity AffairsSecurity News

3 years ago

Recent Posts

Security

MITRE revealed that nation-state actors breached its systems via Ivanti zero-days

The MITRE Corporation revealed that a nation-state actor compromised its systems in January 2024 by…

16 hours ago

Security

FBI chief says China is preparing to attack US critical infrastructure

China-linked threat actors are preparing cyber attacks against U.S. critical infrastructure warned FBI Director Christopher…

1 day ago

Cyber Crime

United Nations Development Programme (UNDP) investigates data breach

The United Nations Development Programme (UNDP) has initiated an investigation into an alleged ransomware attack…

1 day ago

Cyber Crime

FIN7 targeted a large U.S. carmaker with phishing attacks

BlackBerry reported that the financially motivated group FIN7 targeted the IT department of a large…

2 days ago

Hacking

Law enforcement operation dismantled phishing-as-a-service platform LabHost

An international law enforcement operation led to the disruption of the prominent phishing-as-a-service platform LabHost.…

2 days ago

Hacking

Previously unknown Kapeka backdoor linked to Russian Sandworm APT

Russia-linked APT Sandworm employed a previously undocumented backdoor called Kapeka in attacks against Eastern Europe since…

2 days ago

This website uses cookies.