Security Affairs newsletter Round 497 by Pierluigi Paganini – INTERNATIONAL EDITION

Pierluigi Paganini November 10, 2024

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Mazda Connect flaws allow to hack some Mazda vehicles
Veeam Backup & Replication exploit reused in new Frag ransomware attack
Texas oilfield supplier Newpark Resources suffered a ransomware attack
Palo Alto Networks warns of potential RCE in PAN-OS management interface
iPhones in a law enforcement forensics lab mysteriously rebooted losing their After First Unlock (AFU) state
U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog
DPRK-linked BlueNoroff used macOS malware with novel persistence
Canada ordered ByteDance to shut down TikTok operations in the country over security concerns
Critical bug in Cisco UWRB access points allows attackers to run commands as root
INTERPOL: Operation Synergia II disrupted +22,000 malicious IPs
Memorial Hospital and Manor suffered a ransomware attack
South Korea fined Meta $15.67M for illegally collecting and sharing Facebook users
Synology fixed critical flaw impacting millions of DiskStation and BeePhotos NAS devices
ToxicPanda Android banking trojan targets Europe and LATAM, with a focus on Italy
U.S. CISA adds PTZOptics camera bugs to its Known Exploited Vulnerabilities catalog
Canadian authorities arrested alleged Snowflake hacker
Android flaw CVE-2024-43093 may be under limited, targeted exploitation
July 2024 ransomware attack on the City of Columbus impacted 500,000 people
Nigerian man Sentenced to 26+ years in real estate phishing scams
Russian disinformation campaign active ahead of 2024 US election
International law enforcement operation shut down DDoS-for-hire platform Dstat.cc
US Election 2024 – FBI warning about fake election videos
Chinese threat actors use Quad7 botnet in password-spray attacks

International Press – Newsletter

Cybercrime  

Tracking Redline developer: Maxim Rudometov

Cybercrime: Arrests in Hesse and Rhineland-Palatinate

Nigerian Man Sentenced to 26+ Years in Real Estate Phishing / Spoofing Scheme          

Schneider Electric confirms dev platform breach after hacker steals data

Ransomware gang claims responsibility for cyber attack on Georgia hospital  

INTERPOL cyber operation takes down 22,000 malicious IP addresses  

Texas Oilfield Supplier Newpark Hit by Ransomware   

VEEAM exploit seen used again with a new ransomware: “Frag”

Ransomware attack on German pharmaceutical wholesaler causes disruption in medicine supply  

Analysing the cultural dimensions of cybercriminal groups — A case study on the Conti ransomware group

Malware

CRON#TRAP: Emulated Linux Environments as the Latest Tactic in Malware Staging  

Typosquat Campaign Targeting npm Developers

ToxicPanda: a new banking trojan from Asia hit Europe and LATAM      

Cloudy With a Chance of RATs: Unveiling APT36 and the Evolution of ElizaRAT  

Roblox Developers Targeted with npm Packages Infected with Skuld Infostealer and Blank Grabber

Hacking

Attackers Abuse DocuSign API to Send Authentic-Looking Invoices At Scale 

Unmasking VEILDrive: Threat Actors Exploit Microsoft Services for C2  

Behind the Great Wall: Void Arachne Targets Chinese-Speaking Users With the Winos 4.0 C&C Framework  

Every Doggo Has Its Day: Unleashing the Xiū Gǒu Phishing Kit  

Multiple Vulnerabilities in the Mazda In-Vehicle Infotainment (IVI) System

Hacker says they banned ‘thousands’ of Call of Duty gamers by abusing anti-cheat flaw      

Intelligence and Information Warfare 

Georgia official asks social media sites to take down Russian disinformation video  

Chinese researchers build military AI using Meta’s open-source Llama model — ChatBIT allegedly performs at around 90% of the performance of OpenAI GPT-4 LLM 

Joint ODNI, FBI, and CISA Statement on US Election

FBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber Intrusions

Canada orders TikTok’s Canadian business to be dissolved but won’t block app

BlueNoroff Hidden Risk | Threat Actor Targets Macs with Fake Crypto News and Novel Persistence      

The Chinese Military Is Weaponizing Facebook’s Open Source AI  

Cybersecurity

Tracking the FBI’s Most Wanted: “RedLine” Info-Stealer Creator Maxim Rudometov  

Rep. Yvette Clarke on AI-fueled disinformation: ‘We have not protected ourselves in time for this election cycle’  

Columbus says ransomware gang stole personal data of 500,000 Ohio residents  

South Korea fines Meta $15 million for illegally collecting information on Facebook users  

Police Freak Out at iPhones Mysteriously Rebooting Themselves, Locking Cops Out

Palo Alto Networks warns of potential PAN-OS RCE vulnerability    

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)



you might also like

leave a comment