Security Affairs newsletter Round 415 by Pierluigi Paganini – International edition

April 16, 2023  By Pierluigi Paganini


A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

New Android malicious library Goldoson found in 60 apps +100M downloads
Siemens Metaverse exposes sensitive corporate data
CISA adds bugs in Android and Novi Survey to its Known Exploited Vulnerabilities catalog
Volvo retailer leaks sensitive files
A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays
Google fixed the first Chrome zero-day of 2023
Kodi discloses data breach after its forum was compromised
RTM Locker, a new RaaS gains notorieties in the threat landscape
Hikvision fixed a critical flaw in Hybrid SAN and cluster storage products
The Russia-linked APT29 is behind recent attacks targeting NATO and EU
A flaw in the Kyocera Android printing app can be abused to drop malware
Fortinet fixed a critical vulnerability in its Data Analytics product
How to Combat Insider Threats
Hyundai suffered a data breach that impacted customers in France and Italy
QuaDream surveillance firm’s spyware targeted iPhones with zero-click exploit
SAP April 2023 security updates fix critical vulnerabilities
OpenAI launched a bug bounty program
Cybercrime group exploits Windows zero-day in ransomware attacks
A “By-Design” flaw in Microsoft Azure can allow storage accounts takeover
Yum! Brands, the owner of KFC, Taco Bell and Pizza Hut, discloses data breach
Apple released emergency updates to fix recently disclosed zero-day bugs on older devices
A cyber attack hit the water controllers for irrigating fields in the Jordan Valley
CISA adds zero-day bugs in iPhones, Macs, and iPads to its Known Exploited Vulnerabilities catalog
SD Worx shuts down UK and Ireland services after cyberattack
Sophos patches three issues in the Sophos Web Security appliance, one of them rated as critical
Iran-linked MERCURY APT behind destructive attacks on hybrid environments
Samsung employees unwittingly leaked company secret data by using ChatGPT
Researchers disclose critical sandbox escape bug in vm2 sandbox library
Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.



Pierluigi Paganini
Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.





You might also like





  • Digging the Deep Web: Exploring the dark side of the web

    Digging The Deep Web

  • Center for Cyber Security and International Relations Studies

  • Subscribe Security Affairs Newsletter

    newsletter

  • SecurityAffairs awarded as Best European Cybersecurity Tech Blog at European Cybersecurity Blogger Awards

    EU Sec Bloggers Awards 22


More Story

Remcos RAT campaign targets US accounting and tax return preparation firms

 Microsoft warns of a new Remcos RAT campaign targeting US accounting and tax return preparation firms ahead of Tax Day. Ahead...