Pierluigi Paganini October 20, 2024

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

International Press – Newsletter

Cybercrime  

How Southeast Asian Cyber Syndicates Stole Billions  

International action against world’s largest dark web market ‘Bohemia/Cannabia’  

The FBI secretly created a coin to investigate crypto pump-and-dump schemes  

AI-Powered Cybercrime Cartels on the Rise in Asia  

Hackers Advertise Stolen Verizon Push-to-Talk ‘Call Logs’  

Finnish Customs, Europol, Swedish Police and Bitdefender Cooperation Leads to Sipulitie Dark Web Marketplace Shut Down  

Volkswagen monitoring data dump threat from 8Base ransomware crew

PF arrests hacker suspected of invading PF systems and those of other international institutions 

AI-Powered Cybercrime Cartels on the Rise in Asia  

Two Sudanese Nationals Indicted for Alleged Role in Anonymous Sudan Cyberattacks on Hospitals, Government Facilities, and Other Critical Infrastructure in Los Angeles and Around the World  

Alabama Man Arrested for Role in Securities and Exchange Commission X Account Hack  

Malware

Expanding the Investigation: Deep Dive into Latest TrickMo Samples  

HijackLoader evolution: abusing genuine signing certificates

FASTCash for Linux     

Encrypted Symphony: Infiltrating the Cicada3301 Ransomware-as-a-Service Group  

Ransomware Claims Spike: Key Insights from Coalition’s 2024 Cyber Claims Report

ClickFix tactic: The Phantom Meet

Hacking

Pokémon video game developer confirms its systems were breached by hackers  

Silent Threat: Red Team Tool EDRSilencer Disrupting Endpoint Security Solutions  

Chinese Scientists Report Using Quantum Computer to Hack Military-grade Encryption

Critical default credential bug in Kubernetes Image Builder allows SSH root access

Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk

ESET partner breached to send data wipers to Israeli orgs

Intelligence and Information Warfare 

Earth Simnavaz (aka APT34) Levies Advanced Cyberattacks Against UAE and Gulf Regions

Burning Zero Days: Suspected Nation-State Adversary Targets Ivanti CSA        

Germany to beef up security checks amid spying fears   

AhnLab and NCSC Release Joint Report on Microsoft Zero-Day Browser Vulnerability (CVE-2024-38178)

How Israel’s bulky pager fooled Hezbollah

Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations     

UAT-5647 targets Ukrainian and Polish entities with RomCom malware variants

AhnLab and NCSC Release Joint Report on Microsoft Zero-Day Browser Vulnerability (CVE-2024-38178)   

Cybersecurity

How the increasing demand for cyber insurance is changing the role of the CISO  

AI Models in Cybersecurity: From Misuse to Abuse

Some Americans are still using Kaspersky’s antivirus despite US government ban 

Cybersecurity skills in the EU: A new dawn?

Nearly Half of Security Professionals Agree GenAI Is One of Their Biggest Security Risks       

New rules to boost cybersecurity of EU’s critical entities and networks  

This Is Exactly How an Elon Musk-Funded PAC Is Microtargeting Muslims and Jews With Opposing Messages

AI-Powered Social Media Manipulation App Promises to ‘Shape Reality’

Guidelines and Companion Guide on Securing AI Systems         

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)