Breaking News

Security Affairs newsletter Round 302

newsletternewsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the international press subscribe here.

PayPal addresses reflected XSS bug in user wallet currency converter
The kingpin behind Jokers Stash retires with a billionaire exit
France agency ANSSI links Russias Sandworm APT to attacks on hosting providers
French and Ukrainian police arrested Egregor ransomware affiliates/partners in Ukraine
The malicious code in SolarWinds attack was the work of 1,000+ developers
VMware fixes command injection issue in vSphere Replication
A new Bluetooth overlay skimmer block chip-based transactions
Hackers abusing the Ngrok platform phishing attacks
Popular SHAREit app is affected by severe flaws yet to be fixed
Telegram flaw could have allowed access to users secret chats
Centreon says that recently disclosed campaigns only targeted obsolete versions of its open-source software
Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware
ScamClub malvertising gang abused WebKit zero-day to redirect to online gift card scams
US DoJ charges three members of the North Korea-linked Lazarus APT group
Credential stuffing attack hit RIPE NCC: Members have to enable 2FA
SolarWinds hackers had access to components used by Azure, Intune, and Exchange
The OpenSSL Project addressed three vulnerabilities
WatchDog botnet targets Windows and Linux servers in cryptomining campaign
Experts spotted the first malware tailored for Apple M1 Chip, it is just the beginning
Hackers steal credit card data abusing Googles Apps Script
New Masslogger Trojan variant exfiltrates user credentials
Privacy bug in the Brave browser exposes Tor addresses to users DNS provider
Sequoia Capital Venture Capital firm discloses a data breach
Silver Sparrow, a new malware infects Mac systems using Apple M1 chip
SonicWall releases second firmware updates for SMA 100 vulnerability

If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Published by
Pierluigi Paganini
Tags: Cyberespionagedata breachHackinghacking newsinformation security newsIT Information SecuritymalwareNewsletterPierluigi PaganiniSecurity AffairsSecurity News
4 years ago

Recent Posts

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 47

Security Affairs Malware newsletter includes a collection of the best articles and research on malware…

43 minutes ago

Security Affairs newsletter Round 526 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best…

3 hours ago

Two Linux flaws can lead to the disclosure of sensitive data

Qualys warns of two information disclosure flaws in apport and systemd-coredump, the core dump handlers in Ubuntu, Red Hat Enterprise…

21 hours ago

Meta stopped covert operations from Iran, China, and Romania spreading propaganda

Meta stopped three covert operations from Iran, China, and Romania using fake accounts to spread…

2 days ago

US Treasury sanctioned the firm Funnull Technology as major cyber scam facilitator

The U.S. sanctioned Funnull Technology and Liu Lizhi for aiding romance scams that caused major…

2 days ago

ConnectWise suffered a cyberattack carried out by a sophisticated nation state actor<gwmw style="display:none;"></gwmw><gwmw style="display:none;"></gwmw>

ConnectWise detected suspicious activity linked to a nation-state actor, impacting a small number of its…

2 days ago