Breaking News

Security Affairs newsletter Round 427 by Pierluigi Paganini – International edition

newsletternewsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Google addressed 3 actively exploited flaws in Android
Iran-linked APT TA453 targets Windows and macOS systems
Bangladesh government website leaked data of millions of citizens
A man has been charged with a cyber attack on the Discovery Bay water treatment facility
Progress warns customers of a new critical flaw in MOVEit Transfer software
CISA and FBI warn of Truebot infecting US and Canada based organizations
Cisco warns of a flaw in Nexus 9000 series switches that allows modifying encrypted traffic
StackRot, a new Linux Kernel privilege escalation vulnerability
Ransomware accounts for 54% of cyber threats in the health sector
CVE-2022-29303 flaw in SolarView product can be exploited in attacks against the energy sector
RedEnergy Stealer-as-a-Ransomware employed in attacks in the wild
The Port of Nagoya, the largest Japanese port, suffered a ransomware attack
NoName(057)16’s DDoSia Project’s gets an upgrade
Swedish data protection authority rules against the use of Google Analytics
MOVEit attack on Aon exposed data of the staff at the Dublin Airport
Neo_Net runs eCrime campaign targeting clients of banks globally
Hackers stole millions of dollars worth of crypto assets from Poly Network platform
335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997
Anonymous Sudan claims to have stolen 30 million Microsoft’s customer accounts
SmugX: Chinese APT uses HTML smuggling to target European Ministries and embassies
The Impacts of Data Loss on Your Organization
CISA adds Samsung and D-link bugs to its Known Exploited Vulnerabilities catalog
New Windows Meduza Stealer targets tens of crypto wallets and password managers
Experts detected a new variant of North Korea-linked RUSTBUCKET macOS malware
WordPress sites using the Ultimate Member plugin are under attack

Cybercrime

Malvertising Used as Entry Vector for BlackCat, Actors Also Leverage SpyBoy Terminator  

Neo_Net | The Kingpin of Spanish eCrime  

The #Port of #Nagoya, the largest Japanese port, suffered a #ransomware attack

Tracy Resident Charged With Computer Attack On Discovery Bay Water Treatment Facility  

Malware

The DPRK strikes using a new variant of RUSTBUCKET 

Meduza Stealer: What Is It & How Does It Work? 

Ransomware Redefined: RedEnergy Stealer-as-a-Ransomware attacks  

MAR-10445155-1.v1 Truebot Activity Infects U.S. and Canada Based Networks

Hacking

CVE-2023-27997 Is Exploitable, and 69% of FortiGate Firewalls Are Vulnerable  

Dublin Airport staff pay data ‘compromised’ by criminals 

Following NoName057(16) DDoSia Project’s Targets  

Actively Exploited Industrial Control Systems Hardware – SolarView Series   


Intelligence and Information Warfare

CHINESE THREAT ACTORS TARGETING EUROPE IN SMUGX CAMPAIGN  

Welcome to New York: Exploring TA453’s Foray into LNKs and Mac Malware  

Cybersecurity

Four companies must stop using Google Analytics  

Health Threat Landscape  

Researchers Uncover New Linux Kernel ‘StackRot’ Privilege Escalation VulnerabilityBangladesh government website leaks citizens’ personal data

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Published by
Pierluigi Paganini
Tags: Cybercrimedata breachHackinghacking newsinformation security newsIT Information SecuritymalwareNewsletterPierluigi PaganiniSecurity AffairsSecurity News
2 years ago

Recent Posts

Unusual toolset used in recent Fog Ransomware attack

Fog ransomware operators used in a May 2025 attack unusual pentesting and monitoring tools, Symantec…

3 hours ago

<gwmw style="display: none; background-color: transparent;"></gwmw>A cyberattack on United Natural Foods caused bread shortages and bare shelves<gwmw style="display: none; background-color: transparent;"></gwmw><gwmw style="display:none;"></gwmw>

Cyberattack on United Natural Foods Inc. (UNFI) disrupts deliveries, causing Whole Foods shortages nationwide after…

11 hours ago

Paraguay Suffered Data Breach: 7.4 Million Citizen Records Leaked on Dark Web

Resecurity researchers found 7.4 million records containing personally identifiable information (PII) of Paraguay citizens on…

16 hours ago

Apple confirmed that Messages app flaw was actively exploited in the wild<gwmw style="display: none; background-color: transparent;"></gwmw>

Apple confirmed that a security flaw in its Messages app was actively exploited in the…

23 hours ago

Trend Micro fixes critical bugs in Apex Central and TMEE PolicyServer

Trend Micro fixed multiple vulnerabilities that impact its Apex Central and Endpoint Encryption (TMEE) PolicyServer…

1 day ago

Paragon Graphite Spyware used a zero-day exploit to hack at least two journalists’ iPhones<gwmw style="display:none;"></gwmw><gwmw style="display:none;"></gwmw>

Security researchers at Citizen Lab revealed that Paragon's Graphite spyware can hack fully updated iPhones…

2 days ago