Breaking News

Security Affairs newsletter Round 404 by Pierluigi Paganini

newsletternewsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

Copycat Criminals mimicking Lockbit gang in northern Europe
Sandworm APT targets Ukraine with new SwiftSlicer wiper
ISC fixed high-severity flaws in DNS software suite BIND
Patch management is crucial to protect Exchange servers, Microsoft warns
Hacker accused of having stolen personal data of all Austrians and more
CVE-2023-23560 flaw exposes 100 Lexmark printer models to hack
BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer
UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups
An unfaithful employee leaked Yandex source code repositories
Hive Ransomware Tor leak site apparently seized by law enforcement
Experts warn of a surge of attacks exploiting a Realtek Jungle SDK RCE (CVE-2021-35394)
Zacks Investment Research data breach impacted hundreds of thousands of customers
Google Chrome 109 update addresses six security vulnerabilities
North Korea-linked TA444 group turns to credential harvesting activity
French rugby club Stade Français leaks source code
DragonSpark threat actor avoids detection using Golang source code Interpretation
VMware warns of critical code execution bugs in vRealize Log Insight
Pakistan hit by nationwide power outage, is it the result of a cyber attack?
GoTo revealed that threat actors stole customers’ backups and encryption key for some of them
FBI confirms that North Korea-linked Lazarus APT is behind Harmony Horizon Bridge $100 million cyber heist
Meta Platforms expands features for EE2E on Messenger App
CISA added Zoho ManageEngine RCE (CVE-2022-47966) to its Known Exploited Vulnerabilities Catalog
Researcher found US ‘No Fly List’ on an unsecured server
Apple backported patches for CVE-2022-42856 zero-day on older iPhones, iPads
Two flaws in Samsung Galaxy Store can allow to install Apps and execute JS code
Companies impacted by Mailchimp data breach warn their customers
Massive Ad fraud scheme VASTFLUX targeted over 11 million devices
Video game firm Riot Games hacked, now it faces problems to release content
Expert found critical flaws in OpenText Enterprise Content Management System
Roaming Mantis uses new DNS changer in its Wroba mobile malware

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Published by
Pierluigi Paganini
Tags: Cybercrimedata breachHackinghacking newsinformation security newsIT Information SecuritymalwareNewsletterPierluigi PaganiniSecurity AffairsSecurity News
2 years ago

Recent Posts

Two Linux flaws can lead to the disclosure of sensitive data

Qualys warns of two information disclosure flaws in apport and systemd-coredump, the core dump handlers in Ubuntu, Red Hat Enterprise…

7 hours ago

Meta stopped covert operations from Iran, China, and Romania spreading propaganda

Meta stopped three covert operations from Iran, China, and Romania using fake accounts to spread…

1 day ago

US Treasury sanctioned the firm Funnull Technology as major cyber scam facilitator

The U.S. sanctioned Funnull Technology and Liu Lizhi for aiding romance scams that caused major…

1 day ago

ConnectWise suffered a cyberattack carried out by a sophisticated nation state actor<gwmw style="display:none;"></gwmw><gwmw style="display:none;"></gwmw>

ConnectWise detected suspicious activity linked to a nation-state actor, impacting a small number of its…

2 days ago

Victoria’s Secret ‘s website offline following a cyberattack

Victoria’s Secret took its website offline after a cyberattack, with experts warning of rising threats…

2 days ago

China-linked APT41 used Google Calendar as C2 to control its TOUGHPROGRESS malware

Google says China-linked group APT41 controlled malware via Google Calendar to target governments through a…

2 days ago