Pierluigi Paganini
October 08, 2023
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
Cybercrime
A Closer Look at the Snatch Data Ransom Group
Meet LostTrust ransomware — A likely rebrand of the MetaEncryptor gang
Lighting the Exfiltration Infrastructure of a LockBit Affiliate (and more)
Malware
BunnyLoader, the newest Malware-as-a-Service
Qakbot-affiliated actors distribute Ransom Knight malware despite infrastructure takedown
The evolutionary tale of a persistent Python threat
Analyzing Lu0Bot: A Node.js Malware with Near-Unlimited Capabilities
Hacking
RCE in Progress WS_FTP Ad Hoc via IIS HTTP Modules (CVE-2023-40044)
EvilProxy Phishing Attack Strikes Indeed
Statement from Lyca Mobile on cyberattack
Apple emergency update fixes new zero-day used to hack iPhones
NATO investigating breach, leak of internal documents
Zero-days for hacking WhatsApp are now worth millions of dollars
CVE-2023-4911: Looney Tunables – Local Privilege Escalation in the glibc’s ld.so
Intelligence and Information Warfare
Lazarus luring employees with trojanized coding challenges: The case of a Spanish aerospace company
Belgian VSSE INTELLIGENCE REPORT
Espionage fuels global cyberattacks
Belgium’s security services are monitoring Alibaba for possible spying
Record $7 billion in crypto laundered through cross-chain services
Operation Jacana: Foundling hobbits in Guyana
Cybersecurity
Researchers Extract Sounds From Still Images on Smartphone Cameras
Rising OT/ICS cybersecurity incidents reveal alarming trend
Critical Vulnerabilities in WS_FTP Server
Qualcomm Patches 3 Zero-Days Reported by Google
CVE-2023-22515: Zero-Day Privilege Escalation in Confluence Server and Data Center
MGM Resorts Says Ransomware Hack Cost $110 Million
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, newsletter)
