Security Affairs newsletter Round 306

newsletter

newsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the international press subscribe here.

Experts found 15 flaws in Netgear JGS516PE switch, including a critical RCE

Google releases Spectre PoC code exploit for Chrome browser

Google fixes the third actively exploited Chrome 0-Day since January

NCSC is not aware of ransomware attacks compromising UK orgs through Microsoft Exchange bugs

ProxyLogon Microsoft Exchange exploit is completely out of the bag by now

US DoJ indicted the CEO of Sky Global encrypted chat platform

Is there a link between Microsoft Exchange exploits and PoC code the company shared with partner security firms?

Magecart hackers hide captured credit card data in JPG file

Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues

New Mirai variant appears in the threat landscape

China-linked hackers target telcos to steal 5G secrets

Data Breaches Tracker monitor unsecured ElasticSearch servers online

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

New ZHtrap botnet uses honeypot to find more victims

SolarWinds hackers stole some of Mimecast source code

China-linked APT31 group was behind the attack on Finnish Parliament

Expert found a 1-Click RCE in the TikTok App for Android

Prime Minister Boris Johnson wants to enhance UK cyber capabilities

Reading the FBI IC3s ‘2020 Internet Crime Report

WINTRIAGE: THE TRIAGE TOOL FOR WINDOWS DFIRERS

XcodeSpy Mac malware targets Xcode Developers with a backdoor

CISA and FBI warn of ongoing TrickBot attacks

Millions of People Can Lose Sensitive Data through Travel Apps, Privacysavvy reports

Millions of sites could be hacked due to flaws in popular WordPress plugins

Russian National pleads guilty to conspiracy to plant malware on Tesla systems

Threat actors are attempting to exploit CVE-2021-22986 in F5 BIG-IP devices in the wild

Why Focusing on Container Runtimes Is the Most Critical Piece of Security for EKS Workloads?

If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Next Swiss expert Till Kottmann indicted for conspiracy, wire fraud, and aggravated identity theft »

Previous « Microsoft Defender can now protect servers against ProxyLogon attacks

Published by

Pierluigi Paganini

Tags: data breachHackinginformation security newsIT Information SecuritymalwareNewsletterPierluigi PaganiniransomwareSecurity AffairsSecurity News

4 years ago

Recent Posts

Cyber Crime

DOJ moves to seize $7.74M in crypto linked to North Korean IT worker scam

US seeks to seize $7.74M in crypto linked to North Korean fake IT worker schemes,…

8 hours ago

Intelligence

OpenAI bans ChatGPT accounts linked to Russian, Chinese cyber ops

OpenAI banned ChatGPT accounts tied to Russian and Chinese hackers using the tool for malware,…

16 hours ago

Malware

New Mirai botnet targets TBK DVRs by exploiting CVE-2024-3721

A new variant of the Mirai botnet exploits CVE-2024-3721 to target DVR systems, using a…

18 hours ago

Malware

BadBox 2.0 botnet infects millions of IoT devices worldwide, FBI warns

BadBox 2.0 malware has infected millions of IoT devices globally, creating a botnet used for…

19 hours ago

Malware

Over 950K weekly downloads at risk in ongoing supply chain attack on Gluestack packages

A supply chain attack hit NPM, threat actors compromised 16 popular Gluestack packages, affecting 950K+…

2 days ago

Malware

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 48

Security Affairs Malware newsletter includes a collection of the best articles and research on malware…

2 days ago