Security Affairs newsletter Round 459 by Pierluigi Paganini – INTERNATIONAL EDITION

Pierluigi Paganini February 18, 2024

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes
CISA: Cisco ASA/FTD bug CVE-2020-3259 exploited in ransomware attacks
CISA adds Microsoft Exchange and Cisco ASA and FTD bugs to its Known Exploited Vulnerabilities catalogUS gov offers a reward of up to $10M for info on ALPHV/Blackcat gang leaders
U.S. CISA: hackers breached a state government organization
Russia-linked Turla APT uses new TinyTurla-NG backdoor to spy on Polish NGOs
US Gov dismantled the Moobot botnet controlled by Russia-linked APT28
A cyberattack halted operations at Varta production plants
North Korea-linked actors breached the emails of a Presidential Office member
Nation-state actors are using AI services and LLMs for cyberattacks
Abusing the Ubuntu ‘command-not-found’ utility to install malicious packages
Zoom fixed critical flaw CVE-2024-24691 in Windows software
Adobe Patch Tuesday fixed critical vulnerabilities in Magento, Acrobat and Reader
Microsoft Patch Tuesday for February 2024 fixed 2 actively exploited 0-days
A ransomware attack took 100 Romanian hospitals down
Bank of America customer data compromised after a third-party services provider data breach
Ransomfeed – Third Quarter Report 2023 is out!
Global Malicious Activity Targeting Elections is Skyrocketing
Researchers released a free decryption tool for the Rhysida Ransomware
Residential Proxies vs. Datacenter Proxies: Choosing the Right Option
CISA adds Roundcube Webmail Persistent XSS bug to its Known Exploited Vulnerabilities catalog
Canada Gov plans to ban the Flipper Zero to curb car thefts
ExpressVPN leaked DNS requests due to a bug in the split tunneling feature
9 Possible Ways Hackers Can Use Public Wi-Fi to Steal Your Sensitive Data
US Feds arrested two men involved in the Warzone RAT operation
Raspberry Robin spotted using two new 1-day LPE exploits

Cybercrime

International Cybercrime Malware Service Dismantled by Federal Authorities: Key Malware Sales and Support Actors in Malta and Nigeria Charged in Federal Indictments  

As-a-Service tools empower criminals with limited tech skills 

Ransomware Attack Takes 100 Hospitals Offline 

Reward for Information: ALPHV/Blackcat Ransomware as a Service

Foreign National Pleads Guilty to Role in Cybercrime Schemes Involving Tens of Millions of Dollars in Losses      

Malware

RASPBERRY ROBIN KEEPS RIDING THE WAVE OF ENDLESS 1-DAYS

A Method for Decrypting Data Infected with Rhysida Ransomware  

Bypassing EDRs With EDR-Preloading  

Justice Department Conducts Court-Authorized Disruption of Botnet Controlled by the Russian Federation’s Main Intelligence Directorate of the General Staff (GRU)

Face Off  

Hacking

Snap Trap: The Hidden Dangers Within Ubuntu’s Package Suggestion System

Disrupting malicious uses of AI by state-affiliated threat actors      

CISA and MS-ISAC Release Advisory on Compromised Account Used to Access State Government Organization

Ivanti Pulse Secure Found Using 11-Year-Old Linux Version and Outdated Libraries

Intelligence and Information Warfare 

Global Malicious Activity Targeting Elections Is Skyrocketing  

Staying ahead of threat actors in the age of AI  

US needs to take China’s cyber-threat to US infrastructure more seriously 

South Korea says presumed North Korean hackers breached personal emails of presidential staffer  

TinyTurla Next Generation – Turla APT spies on Polish NGOs  

Cybersecurity          

LEADERSBuilding a Data Fortress: Data Security and Privacy in the Age of Generative AI and LLMs   

Package Theft Statistics  

After a tip, ExpressVPN acts swiftly to protect customers  

Canada to ban the Flipper Zero to stop surge in car thefts

I’m a cyber expert, these are the five things you need to do to ‘digitally break up’ with someone in the age of login sharing  

THE FEBRUARY 2024 SECURITY UPDATE REVIEW  

Fertility tracker Glow fixes bug that exposed users’ personal data

European Court of Human Rights declares backdoored encryption is illegal

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)



you might also like

leave a comment