Security Affairs newsletter Round 447 by Pierluigi Paganini – INTERNATIONAL EDITION

Pierluigi Paganini November 26, 2023

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Rhysida ransomware gang claimed China Energy hack
North Korea-linked APT Lazarus is using a MagicLine4NX zero-day flaw in supply chain attack
Hamas-linked APT uses Rust-based SysJoker backdoor against Israel
App used by hundreds of schools leaking children’s data
Microsoft launched its new Microsoft Defender Bounty Program
Exposed Kubernetes configuration secrets can fuel supply chain attacks
North Korea-linked Konni APT uses Russian-language weaponized documents
ClearFake campaign spreads macOS AMOS information stealer
Welltok data breach impacted 8.5 million patients in the U.S.
North Korea-linked APT Diamond Sleet supply chain attack relies on CyberLink software
New InfectedSlurs Mirai-based botnet exploits two zero-days
SiegedSec hacktivist group hacked Idaho National Laboratory (INL)
CISA adds Looney Tunables Linux bug to its Known Exploited Vulnerabilities catalog
Enterprise software provider TmaxSoft leaks 2TB of data
Citrix provides additional measures to address Citrix Bleed
Tor Project removed several relays associated with a suspicious cryptocurrency scheme
Experts warn of a surge in NetSupport RAT attacks against education and government sectors
Canadian government impacted by data breaches of two of its contractors
Rhysida ransomware gang is auctioning data stolen from the British Library
Russia-linked APT29 group exploited WinRAR 0day in attacks against embassies
DarkCasino joins the list of APT groups exploiting WinRAR zero-day
US teenager pleads guilty to his role in credential stuffing attack on a betting site
8Base ransomware operators use a new variant of the Phobos ransomware


Illicit Financial Flows from Cyber-Enabled Fraud

Wisconsin Man Pleads Guilty To Hacking Fantasy Sports And Betting Website   

Mitigation Guide: Healthcare and Public Health (HPH) Sector

Actor yalishanda: A snapshot of a prolific bulletproof hoster  

Australia Breaks Apart Crime Network Handling Nearly $1 Billion in Cryptocurrency   


The Mirai Confessions: Three Young Hackers Who Built a Web-Killing Monster Finally Tell Their Story  

VX-Underground malware collective framed by Phobos ransomware

NetSupport RAT: The RAT King Returns 

#StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability   

InfectedSlurs Botnet Spreads Mirai via Zero-Days   

Atomic Stealer distributed to Mac users via fake browser updates  

Konni Campaign Distributed Via Malicious Document  



The New APT Group DarkCasino and the Global Surge in WinRAR 0-Day Exploits    

Hackers are taking over planes’ GPS — experts are lost on how to fix it 


The Ticking Supply Chain Attack Bomb of Exposed Kubernetes Secrets

Microsoft Defender Bounty Program      

How Hackers Are Using AI To Steal Your Bank Account Password

Hackers Claim Attack on General Electric, Leak Data Samples

Potentially hundreds of UK law firms affected by cyberattack on IT provider CTS 

Flipper Zero can still crash iPhones running the latest version of iOS 17           

Intelligence and Information Warfare

Diamond Sleet supply chain compromise distributes a modified CyberLink installer

Europol sets up OSINT taskforce to support investigations into war crimes committed in Ukraine   

DPRK state-linked cyber actors conduct software supply chain attacks

Secretive White House Surveillance Program Gives Cops Access to Trillions of US Phone Records        

Chinese cyber espionage exposes years-long grip on Dutch chip giant  


ChatGPT Is Apparently a Great Surveillance Tool  

Message to current and former public service employees and members of the Canadian Armed Forces and Royal Canadian Mounted Police   

Safeguarding the Tor network: our commitment to network health and supporting relay operators   

DOJ Charges Binance With Vast Money-Laundering Scheme and Sanctions Violations  

iOS 15 Image Forensics Analysis and Tools Comparison – Browsers, Mail Clients, and Productivity apps  

OpenAI researchers warned board of AI breakthrough ahead of CEO ouster, sources say      

Cybersecurity industry responds to SEC charges against SolarWinds and former CISO  

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

you might also like

leave a comment