Security Affairs newsletter Round 429 by Pierluigi Paganini – International edition

Pierluigi Paganini July 23, 2023

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Multiple DDoS botnets were observed targeting Zyxel devices
CISA warns of attacks against Citrix NetScaler ADC and Gateway Devices
Experts believe North Korea behind JumpCloud supply chain attack
Nice Suzuki, sport: shame dealer left your data up for grabs
Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group
ALPHV/BlackCat and Clop gangs claim to have hacked cosmetics giant Estée Lauder
P2PInfect, a Rusty P2P worm targets Redis Servers on Linux and Windows systems
Adobe out-of-band update addresses an actively exploited ColdFusion zero-day
Ukraine’s cyber police dismantled a massive bot farm spreading propaganda
US Gov adds surveillance firms Cytrox and Intellexa to Entity List for trafficking in cyber exploits
Citrix warns of actively exploited zero-day in ADC and Gateway
FIA World Endurance Championship driver passports leaked
Virustotal data leak exposed data of some registered customers, including intelligence members
FIN8 Group spotted delivering the BlackCat Ransomware
Hacking campaign targets sites using WordPress WooCommerce Payments Plugin
JumpCloud revealed it was hit by a sophisticated attack by a nation-state actor
Adobe warns customers of a critical ColdFusion RCE exploited in attacks
Admins of Genesis Market marketplace sold their infrastructure on a hacker forum
Cisco fixed a critical flaw in SD-WAN vManage
Pompompurin, the BreachForums owner, pleads guilty to hacking charges and possession of child pornography
WormGPT, the generative AI tool to launch sophisticated BEC attacks

Cybercrime

WormGPT – The Generative AI Tool Cybercriminals Are Using to Launch Business Email Compromise Attacks     

FIN8 Group Using Modified Sardonic Backdoor for BlackCat Ransomware Attacks

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack  

Nigerian Man Sentenced to 8 Years in US Prison for $8 Million BEC Scheme

Internet Organised Crime Threat Assessment (IOCTA) 2023    

Malware

P2PInfect: The Rusty Peer-to-Peer Self-Replicating Worm  

Lookout Attributes Advanced Android Surveillanceware to Chinese Espionage Group APT41  

DDoS Botnets Target Zyxel Vulnerability CVE-2023-28771

BYOS – BUNDLE YOUR OWN STEALER      

Hacking

Massive Targeted Exploit Campaign Against WooCommerce Payments Underway  

Finding and exploiting process killer drivers with LOL for 3000$  

Zero-Day Attacks Exploited Critical Vulnerability in Citrix ADC and Gateway

Bad.Build: A Critical Privilege Escalation Design Flaw in Google Cloud Build Enables a Supply Chain Attack  

JumpCloud Intrusion | Attacker Infrastructure Links Compromise to North Korean APT Activity

Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells 

         
Intelligence and Information Warfare

[Security Update] JumpCloud Incident Details  

Commerce Adds Four Entities to Entity List for Trafficking in Cyber Exploits   

Cyber ​​police exposed organizers of bot farms that spread hostile propaganda and engaged in Internet fraud  

Cybersecurity

Lowering the Bar(d)? Check Point Research’s security analysis spurs concerns over Google Bard’s limitations

Quantum-Safe Cryptography: A Call for National Action       

Data leak reveals customers of the Google security platform VirusTotal  

Kevin Mitnick, Hacker Who Once Eluded     Authorities, Is Dead at 59

Nice Suzuki, sport: shame dealer left your data up for grabs  

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)



you might also like

leave a comment