Security Affairs newsletter Round 335

newsletter

newsletter

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the international press subscribe here.

Previously undetected FontOnLake Linux malware used in targeted attacks

Google addresses four high-severity flaws in Chrome

Security expert published NMAP script for Apache CVE-2021-41773 vulnerability

Sky.com servers exposed via misconfiguration

Cox Media Group took down broadcasts after a ransomware attack

58% of all nation-state attacks in the last year were launched by Russian nation-state actors

The Netherlands declares war on ransomware operations

Google warns of APT28 attack attempts against 14,000 Gmail users

Apache rolled out a new update in a few days to fix incomplete patch for an actively exploited flaw

FIN12 ransomware gang don’t implement double extortion to prioritize speed

PoC exploit for 2 flaws in Dahua cameras leaked online

Twitch data breach updates: login credentials or card numbers not exposed ⓘ

Operation GhostShell: MalKamak APT targets aerospace and telco firms

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Twitch source code and sensitive data leaked online

Arizona governor announces the launch of Command Center to protect state computer systems

UK newspaper The Telegraph exposed a 10TB database with subscriber data

LANtenna attack allows exfiltrating data from Air-Gapped systems via Ethernet cables

Apache patch a zero-day flaw exploited in the wild

Unnamed Ransomware gang uses a Python script to encrypt VMware ESXi servers

Telco service provider giant Syniverse had unauthorized access since 2016

Dark web marketplace White House announces end to its operations

Misconfigured Apache Airflow servers leak thousands of credentials

Facebook, WhatsApp, and Instagram are down worldwide, it’s panic online

Pottawatomie County paid the ransom to recover its systems

Two ransomware operators were arrested in Kyiv with EUROPOL’s support

New APT ChamelGang Targets energy and aviation companies in Russia

LockBit 2.0 ransomware hit Israeli defense firm E.M.I.T. Aviation Consulting

TA544 group behind a spike in Ursnif malware campaigns targeting Italy

CVE-2021-38647 OMIGOD flaw impacts IBM QRadar Azure

The Biden administration will work with 30 countries to curb global cybercrime

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Next Medtronic recalls some controllers used with some of its insulin pumps over cyberattack risks »

Previous « Previously undetected FontOnLake Linux malware used in targeted attacks

Published by

Pierluigi Paganini

Tags: APTCybercrimedata breachHackinghacking newsinformation security newsIT Information SecuritymalwareNewsletterPierluigi PaganiniSecurity AffairsSecurity News

4 years ago

Recent Posts

Cyber Crime

DOJ moves to seize $7.74M in crypto linked to North Korean IT worker scam

US seeks to seize $7.74M in crypto linked to North Korean fake IT worker schemes,…

8 hours ago

Intelligence

OpenAI bans ChatGPT accounts linked to Russian, Chinese cyber ops

OpenAI banned ChatGPT accounts tied to Russian and Chinese hackers using the tool for malware,…

16 hours ago

Malware

New Mirai botnet targets TBK DVRs by exploiting CVE-2024-3721

A new variant of the Mirai botnet exploits CVE-2024-3721 to target DVR systems, using a…

18 hours ago

Malware

BadBox 2.0 botnet infects millions of IoT devices worldwide, FBI warns

BadBox 2.0 malware has infected millions of IoT devices globally, creating a botnet used for…

19 hours ago

Malware

Over 950K weekly downloads at risk in ongoing supply chain attack on Gluestack packages

A supply chain attack hit NPM, threat actors compromised 16 popular Gluestack packages, affecting 950K+…

2 days ago

Malware

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 48

Security Affairs Malware newsletter includes a collection of the best articles and research on malware…

2 days ago