Pierluigi Paganini December 29, 2024

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

International Press – Newsletter

Cybercrime  

Phishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces  

Pittsburgh Regional Transit attributes recent service disruptions to ransomware attack  

Brazilian Man Charged With Making Extortionate Threats To Publicize Stolen Data Obtained By Unlawful Computer Intrusion  

Malware

Now You See Me, Now You Don’t: Using LLMs to Obfuscate Malicious JavaScript

Analyzing Malicious Intent in Python Code: A Case Study      

DigiEver Fix That IoT Thing!  

Hacking

The Insecure IoT Cloud Strikes Again: RCE on Ruijie Cloud-Connected Devices  

Cybersecurity firm’s Chrome extension hijacked to steal users’ data

Japan Airlines was hit by a cyberattack, delaying flights during the year-end holiday season  

Hackers exploit DoS flaw to disable Palo Alto Networks firewalls

Intelligence and Information Warfare 

Ukraine’s state registers hit with one of Russia’s largest cyberattacks, officials say

Lazarus group evolves its infection chain with old and new malware    

FBI, DC3, and NPA Identification of North Korean Cyber Actors, Tracked as TraderTraitor, Responsible for Theft of $308 Million USD from Bitcoin.DMM.com  

BellaCPP: Discovering a new BellaCiao variant written in C++

OtterCookie, a new malware used by Contagious Interview

Recent Cases of Watering Hole Attacks, Part 2  

Cybersecurity

U.S. Judge Rules Against NSO Group in WhatsApp Pegasus Spyware Case

Italy fines OpenAI over ChatGPT privacy rules breach  

Adobe Patches ColdFusion Flaw at High Risk of Exploitation  

The Intersection of AI and OSINT: Advanced Threats On The Horizon

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)