Breaking News

Security Affairs newsletter Round 314

newsletternewsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

CISA MAR report provides technical details of FiveHands Ransomware
SQL injection issue in Anti-Spam WordPress Plugin exposes User Data
TsuNAME flaw exposes DNS servers to DDoS attacks
City of Tulsa, is the last US city hit by ransomware attack
City of Tulsa, is the latest US city hit by ransomware attack
FBI confirmed that Darkside ransomware gang hit Colonial Pipeline
Threat actors added thousands of Tor exit nodes to carry out SSL stripping attacks
WhatsApp will not deactivate accounts for not accepting new privacy terms
Apple was aware that XcodeGhost impacted 128 Million iOS Users in 2015
FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks
Google open sources cosign tool for verifying containers
Hackers target Windows users exploiting a Zero-Day in Reader
Researcher hacked Apple AirTag two weeks after its launch
FragAttacks vulnerabilities expose all WiFi devices to hack
How Companies Need to Treat User Data and Manage Their Partners
Maybe dont call Saul? Over 30,000 VoIP devices identifiable worldwide, some with suspected vulnerabilities
Microsoft Patch Tuesday for May 2021 fix 4 critical flaws
NSA and ODNI analyze potential risks to 5G networks
TeaBot Android banking Trojan targets banks in Europe
Biden signed executive order to improve the Nations Cybersecurity
Cisco fixes AnyConnect Client VPN zero-day disclosed in November
Security at Bay: Critical Infrastructure Under Attack
US CISA and FBI publish joint alert on DarkSide ransomware
Colonial Pipeline likely paid a $5M ransom to DarkSide
Darkside gang lost control of their servers and funds
Irelands Health Service Executive hit by ransomware attack
Magecart gang hides PHP-based web shells in favicons
Rapid7 says source code, credentials accessed as a result of Codecov supply-chain attack
Scheme flooding fingerprint technique may deanonymize Tor users

If you want also receive the International Press subscribe for free to the Security Affairs newsletter here.

https://securityaffairs.co/wordpress/112244/breaking-news/security-affairs-newsletter-is-back.html

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Published by
Pierluigi Paganini
Tags: Cybersecuritycybersecurity newsHackinghacking newsinformation security newsNewsletterPierluigi PaganiniSecurity AffairsSecurity News
4 years ago

Recent Posts

Two Linux flaws can lead to the disclosure of sensitive data

Qualys warns of two information disclosure flaws in apport and systemd-coredump, the core dump handlers in Ubuntu, Red Hat Enterprise…

11 hours ago

Meta stopped covert operations from Iran, China, and Romania spreading propaganda

Meta stopped three covert operations from Iran, China, and Romania using fake accounts to spread…

1 day ago

US Treasury sanctioned the firm Funnull Technology as major cyber scam facilitator

The U.S. sanctioned Funnull Technology and Liu Lizhi for aiding romance scams that caused major…

2 days ago

ConnectWise suffered a cyberattack carried out by a sophisticated nation state actor<gwmw style="display:none;"></gwmw><gwmw style="display:none;"></gwmw>

ConnectWise detected suspicious activity linked to a nation-state actor, impacting a small number of its…

2 days ago

Victoria’s Secret ‘s website offline following a cyberattack

Victoria’s Secret took its website offline after a cyberattack, with experts warning of rising threats…

3 days ago

China-linked APT41 used Google Calendar as C2 to control its TOUGHPROGRESS malware

Google says China-linked group APT41 controlled malware via Google Calendar to target governments through a…

3 days ago