Categories: Breaking News

Security Affairs newsletter Round 37 – Best of the week from best sources

newsletternewsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from the best sources free for you in your email box.

Police Body Cameras come with Conficker Worm
Shedun adware can install any malicious mobile app by exploiting Android Accessibility Service
DHS Information Security Program, Dozens secret databases vulnerable to hack
United Airlines Patches Serious Flaw After 6 Months
Malvertising: How the ad model makes crime pay
Damballa revealed the secrets behind the Destover malware that infected the Sony Pictures
Ransomware will target also Medical Devices
Kaspersky gives a close look to the Russian underground
Homebrew crypto in Telegram hangout app full of holes, say security pros
New IBM tech lets apps authenticate you without personal data
Many embedded devices ship without adequate security tests, analysis shows
Belgium Joins NATO Cooperative Cyber Defence Centre
Starwood Hotel Chain Hit By Point of Sale Malware
Cyber Attacks Fuel Spending in Oil and Gas Security: Report
TrueCrypt is safer than previous examinations suggest
British duo arrested for running malware encryption service
Dell puts users at risk with dangerous eDellRoot root certificate
Documents demonstrate NSA continued mass surveillance
ModPos, the most complex POS malware ever seen
Researchers poke hole in custom crypto protecting Amazon Web Services
New Dridex campaign achieves high infection ratio in European countries
An encryption back door won’t actually help intelligence agencies
What you need to know about Dells root certificate security debacle
MagSpoof, how to predict American Express card numbers
Why Microsoft yanked its latest Windows 10 update download: It hijacked privacy settings
GlassRAT, the threat that remained stealth for years
This $10 Device Can Guess and Steal Your Next Credit Card Number before Youve Received It
How The Russian Abused Twitter as C&C in Hammertoss Malware? Python Answers
Nuclear Exploit Kit Spreading Cryptowall 4.0 Ransomware
Pearson VUE Credential manager system has been compromised
New Dridex Variants Achieve High Infection Rate Using Poisoned Docs
Researcher reveals Chinese e-crime shopping list
Russia, Hackers Stole $4 Million in cash with Reverse ATM Hack method
Lenovo slings privilege patches at in-built tools
Hackers are using Nuclear Exploit Kit to Spread Cryptowall 4.0 Ransomware
Facebook first discovered spear phishing attacks of Iranian hackers on State Department employees
FBI is hunting MrGrey who has stolen 1.2 BILLION login credentials
RAF web survey asks for bank details via unencrypted email
IoT devices are re-using cryptographic keys, leaving in danger millions of devices
HTTPSohopeless: 26,000 Telstra Cisco boxen open to device hijacking
Windows Phone hacked with Windows Phone Internals
Black Friday and Cyber Monday, Keep Yourself Safe
Nest camera, has a different definition for Turn off Mode
Crooks use the Nuclear Exploit Kit to serve CryptoWall 4.0
Hackers spray Readers Digest stinky feet with exploit kit
Russians embrace Bitcoins, the West sticks with PayPal
LinkedIn Patches Clickjacking Flaw Exploitable via CSS
Millions of IoT Devices Using Same Hard-Coded CRYPTO Keys
VPN users be aware , Port Fail flaw can reveal your identity
ITAR (International Traffic in Arms Regulations) as cyber arms control
Trident nuclear weapons system could be vulnerable to cyber attacks
Assassins in the darkweb, Service catalogue and Price list updated

I desire to inform you that Security Affairs is now open to sponsored content.
I’ll offer the opportunity to:
•    Insert banners of various sizes in all the posts on Security Affairs.
•    Publish sponsored posts written by the customers that can include any kind of commercial reference.
•    Arrange a monthly/quarterly/annual campaign (for big customers) to advertise customers’ activities and discoveries.
For more info contact me at pierluigi.paganini@securityaffairs.co
Thanks for supporting Security Affairs.

Email address: Hurry up, subscribe to the newsletter, next Sunday you will receive all the news directly in your inbox.

Once again thank you!

Pierluigi Paganini

(Security Affairs – Newsletter, SecurityAffairs)

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Published by
Pierluigi Paganini
Tags: cyber securityNewsletterPierluigi PaganiniSecurity Affairs
10 years ago

Recent Posts

Paragon Graphite Spyware used a zero-day exploit to hack at least two journalists’ iPhones<gwmw style="display:none;"></gwmw><gwmw style="display:none;"></gwmw>

Security researchers at Citizen Lab revealed that Paragon's Graphite spyware can hack fully updated iPhones…

4 hours ago

SinoTrack GPS device flaws allow remote vehicle control and location tracking

Two vulnerabilities in SinoTrack GPS devices can allow remote vehicle control and location tracking by…

12 hours ago

U.S. CISA adds Wazuh, and WebDAV flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Wazuh, and WebDAV flaws to its Known…

15 hours ago

Exposed eyes: 40,000 security cameras vulnerable to remote hacking

Over 40,000 internet-exposed security cameras worldwide are vulnerable to remote hacking, posing serious privacy and…

16 hours ago

Operation Secure: INTERPOL dismantles 20,000+ malicious IPs in major cybercrime crackdown

INTERPOL announced that a joint operation code-named Operation Secure took down 20,000+ malicious IPs/domains tied…

1 day ago

Over 80,000 servers hit as Roundcube RCE bug gets rapidly exploited

A critical remote code execution (RCE) vulnerability in Roundcube was exploited days after patch, impacting…

2 days ago