Pierluigi Paganini December 15, 2024

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

International Press – Newsletter

Cybercrime  

Anna Jaques Hospital ransomware breach exposed data of 300K patients

Black Basta Ransomware Campaign Drops Zbot, DarkGate, and Custom Malware  

It’s time to get to know deepfakes before they get to know you 

Law enforcement shuts down 27 DDoS booters ahead of annual Christmas attacks  

Rydox Cybercrime Marketplace Shut Down and Three Administrators Arrested  

The ‘Ghost Gun’ Linked to Luigi Mangione Shows Just How Far 3D-Printed Weapons Have Come  

Malware

PROXY.AM Powered by Socks5Systemz Botnet 

Inside Zloader’s Latest Trick: DNS Tunneling  

BSI points out pre-installed malware on IoT devices  

Declawing PUMAKIT  

Lookout Discovers New Chinese Surveillance Tool Used by Public Security Bureaus  

Hacking

(QR) Coding My Way Out of Here: C2 in Browser Isolation Environments 

Researchers Uncover Prompt Injection Vulnerabilities in DeepSeek and Claude AI

From Naptime to Big Sleep: Using Large Language Models To Catch Vulnerabilities In Real-World Code  

Key electricity distributor in Romania warns of ‘cyber attack in progress’  

An offensive Rust encore  

China-Based Hacker Charged for Conspiring to Develop and Deploy Malware That Exploited Tens of Thousands of Firewalls Worldwide     

Not All Roads Lead to PWN2OWN: Hardware Hacking (Part 1)  

BadRAM:Practical Memory Aliasing Attacks on Trusted Execution Environments

Teaching an Old Framework New Tricks: The Dangers of Windows UI Automation 

Threat Advisory: Oh No Cleo! Cleo Software Actively Being Exploited in the Wild  

Intelligence and Information Warfare 

New documentary details how governments use spyware to monitor citizens’ phones

Operation Digital Eye | Chinese APT Compromises Critical Digital Infrastructure via Visual Studio Code Tunnels  

US Senator announces new bill to secure telecom companies in wake of Chinese hacks  

Targeted cyberattacks UAC-0185 against the Defense Forces and defense industry enterprises of Ukraine (CERT-UA#12414)  

Frequent freeloader part II: Russian actor Secret Blizzard using tools of other groups to attack Ukraine  

Lookout Discovers Two Russian Android Spyware Families from Gamaredon APT 

Inside a New OT/IoT Cyberweapon: IOCONTROL

Cybersecurity

He Investigates the Internet’s Most Vicious Hackers—From a Secret Location 

The December 2024 Security Update Review  

WhatsApp fixes bug that let users bypass ‘View Once’ privacy feature  

Treasury Sanctions Cybersecurity Company Involved in Compromise of Firewall Products and Attempted Ransomware Attacks  

Yahoo cybersecurity team sees layoffs, outsourcing of ‘red team,’ under new CTO  

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)