Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
Cybercrime
Cybercriminals Evolve Antidetect Tooling For Mobile OS-Based Fraud
Storm-0978 attacks reveal financial and espionage motives
Cl0p hacker operating from Russia-Ukraine war front line – exclusive
UK battles hacking wave as ransomware gang claims ‘biggest ever’ NHS breach
Deutsche Bank confirms provider breach exposed customer data
Malware
Two spyware tied with China found hiding on the Google Play Store
The Turkish Government Masqueraded Site Distributing Android RAT
Routers From The Underground: Exposing AVrecon
BlackLotus UEFI Bootkit Source Code Leaked on GitHub
Hacking
Report: Revolut US Payments Flaw Leads to $20 Million Theft
AWS CodeBuild + S3 == Privilege Escalation
Game Hacking 101: Unleashing the Power of Memory Manipulation
SSD ADVISORY – EDGEROUTERS AND AIRCUBE MINIUPNPD HEAP OVERFLOW
Exploit Code Published for Remote Root Flaw in VMware Logging Software
Dragos Enabled Defense Against APT Exploits for Rockwell Automation ControlLogix
Intelligence and Information Warfare
France set to allow police to spy through phones
RomCom Threat Actor Suspected of Targeting Ukraine’s NATO Membership Talks at the NATO Summit
Mitigation for China-Based Threat Actor Activity
How a Cloud Flaw Gave Chinese Spies a Key to Microsoft’s Kingdom
Chinese hackers breach email of Commerce Secretary Raimondo and State Department officials
Summary information on the activities of the UAC-0010 group as of July 2023
Cybersecurity
Microsoft mitigates China-based threat actor Storm-0558 targeting of customer email
White House unveils ‘roadmap’ for national cyber strategy goals
Zimbra urges admins to manually fix zero-day exploited in attacks
CISA Releases One Industrial Control Systems Advisory
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, newsletter)