Security Affairs newsletter Round 328

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the international press subscribe here.

U.S. State Department was recently hit by a cyber attack

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

US CISA releases guidance on how to prevent ransomware data breaches

Lojas Renner, Brazilian largest clothing store chain, was hit by ransomware

Emsisoft releases free SynAck ransomware decryptor

Cloudflare mitigated the largest ever volumetric DDoS attack to date

Internet Systems Consortium (ISC) fixes High-Severity DoS flaw in BIND DNS Software

Mozi P2P Botnet also targets Netgear, Huawei, and ZTE devices

Cisco warns of Server Name Identification data exfiltration flaw in multiple products

637 flaws in industrial control system (ICS) products were published in H1 2021

Threat actors stole $97 million from Liquid cryptocurency exchange

Cisco will not patch critical flaw CVE-2021-34730 in EoF routers

Threat actors hacked US Census Bureau in 2020 by exploiting a Citrix flaw

NK-linked InkySquid APT leverages IE exploits in recent attacks

New analysis of Diavol ransomware reinforces the link to TrickBot gang

T-Mobile data breach has impacted 48.6 million customers

Adobe addresses two critical vulnerabilities in Photoshop

Hamburg’s data protection agency (DPA) states that using Zoom violates GDPR

Kalay cloud platform flaw exposes millions of IoT devices to hack

Fortinet FortiWeb OS Command Injection allows takeover servers remotely

1.9 million+ records from the FBI’s terrorist watchlist available online

Colonial Pipeline discloses data breach after May ransomware attack

T-Mobile confirms data breach that exposed customer personal info

Recent attacks on Iran were orchestrated by the Indra group

US FINRA warns US brokerage firms and brokers of ongoing phishing attacks

Threat actor claims to be selling data of more than 100 million T-Mobile customers

A job ad published by the UK’s Ministry of Defence revealed a secret hacking squad

Glowworm Attack allows sound recovery via a device’s power indicator LED

If you want to also receive for free the international press subscribe here.

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

If you want to also receive for free the international press subscribe here.

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Next Google discloses unpatched Microsoft WFP Default Rules AppContainer Bypass EoP »

Previous « T-Mobile data breach could be worse than initially thought, 54 million customers impacted

Published by

Pierluigi Paganini

Tags: Cybercrimedata breachhacking newsinformation security newsIT Information SecuritymalwareNewsletterPierluigi PaganiniSecurity AffairsSecurity News

3 years ago

Recent Posts

Security

FBI chief says China is preparing to attack US critical infrastructure

China-linked threat actors are preparing cyber attacks against U.S. critical infrastructure warned FBI Director Christopher…

6 hours ago

Cyber Crime

United Nations Development Programme (UNDP) investigates data breach

The United Nations Development Programme (UNDP) has initiated an investigation into an alleged ransomware attack…

9 hours ago

Cyber Crime

FIN7 targeted a large U.S. carmaker with phishing attacks

BlackBerry reported that the financially motivated group FIN7 targeted the IT department of a large…

20 hours ago

Hacking

Law enforcement operation dismantled phishing-as-a-service platform LabHost

An international law enforcement operation led to the disruption of the prominent phishing-as-a-service platform LabHost.…

1 day ago

Hacking

Previously unknown Kapeka backdoor linked to Russian Sandworm APT

Russia-linked APT Sandworm employed a previously undocumented backdoor called Kapeka in attacks against Eastern Europe since…

1 day ago

Hacking

Cisco warns of a command injection escalation flaw in its IMC. PoC publicly available

Cisco has addressed a high-severity vulnerability in its Integrated Management Controller (IMC) for which publicly…

1 day ago

This website uses cookies.