Categories: Breaking News

Security Affairs newsletter Round 37 – Best of the week from best sources

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from the best sources free for you in your email box.

Police Body Cameras come with Conficker Worm
Shedun adware can install any malicious mobile app by exploiting Android Accessibility Service
DHS Information Security Program, Dozens secret databases vulnerable to hack
United Airlines Patches Serious Flaw After 6 Months
Malvertising: How the ad model makes crime pay
Damballa revealed the secrets behind the Destover malware that infected the Sony Pictures
Ransomware will target also Medical Devices
Kaspersky gives a close look to the Russian underground
Homebrew crypto in Telegram hangout app full of holes, say security pros
New IBM tech lets apps authenticate you without personal data
Many embedded devices ship without adequate security tests, analysis shows
Belgium Joins NATO Cooperative Cyber Defence Centre
Starwood Hotel Chain Hit By Point of Sale Malware
Cyber Attacks Fuel Spending in Oil and Gas Security: Report
TrueCrypt is safer than previous examinations suggest
British duo arrested for running malware encryption service
Dell puts users at risk with dangerous eDellRoot root certificate
Documents demonstrate NSA continued mass surveillance
ModPos, the most complex POS malware ever seen
Researchers poke hole in custom crypto protecting Amazon Web Services
New Dridex campaign achieves high infection ratio in European countries
An encryption back door won’t actually help intelligence agencies
What you need to know about Dells root certificate security debacle
MagSpoof, how to predict American Express card numbers
Why Microsoft yanked its latest Windows 10 update download: It hijacked privacy settings
GlassRAT, the threat that remained stealth for years
This $10 Device Can Guess and Steal Your Next Credit Card Number before Youve Received It
How The Russian Abused Twitter as C&C in Hammertoss Malware? Python Answers
Nuclear Exploit Kit Spreading Cryptowall 4.0 Ransomware
Pearson VUE Credential manager system has been compromised
New Dridex Variants Achieve High Infection Rate Using Poisoned Docs
Researcher reveals Chinese e-crime shopping list
Russia, Hackers Stole $4 Million in cash with Reverse ATM Hack method
Lenovo slings privilege patches at in-built tools
Hackers are using Nuclear Exploit Kit to Spread Cryptowall 4.0 Ransomware
Facebook first discovered spear phishing attacks of Iranian hackers on State Department employees
FBI is hunting MrGrey who has stolen 1.2 BILLION login credentials
RAF web survey asks for bank details via unencrypted email
IoT devices are re-using cryptographic keys, leaving in danger millions of devices
HTTPSohopeless: 26,000 Telstra Cisco boxen open to device hijacking
Windows Phone hacked with Windows Phone Internals
Black Friday and Cyber Monday, Keep Yourself Safe
Nest camera, has a different definition for Turn off Mode
Crooks use the Nuclear Exploit Kit to serve CryptoWall 4.0
Hackers spray Readers Digest stinky feet with exploit kit
Russians embrace Bitcoins, the West sticks with PayPal
LinkedIn Patches Clickjacking Flaw Exploitable via CSS
Millions of IoT Devices Using Same Hard-Coded CRYPTO Keys
VPN users be aware , Port Fail flaw can reveal your identity
ITAR (International Traffic in Arms Regulations) as cyber arms control
Trident nuclear weapons system could be vulnerable to cyber attacks
Assassins in the darkweb, Service catalogue and Price list updated

I desire to inform you that Security Affairs is now open to sponsored content.
I’ll offer the opportunity to:
•    Insert banners of various sizes in all the posts on Security Affairs.
•    Publish sponsored posts written by the customers that can include any kind of commercial reference.
•    Arrange a monthly/quarterly/annual campaign (for big customers) to advertise customers’ activities and discoveries.
For more info contact me at pierluigi.paganini@securityaffairs.co
Thanks for supporting Security Affairs.

Email address: Hurry up, subscribe to the newsletter, next Sunday you will receive all the news directly in your inbox.

Once again thank you!

Pierluigi Paganini

(Security Affairs – Newsletter, SecurityAffairs)

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Published by
Pierluigi Paganini
Tags: cyber securityNewsletterPierluigi PaganiniSecurity Affairs
8 years ago

Recent Posts

Cryptocurrencies and cybercrime: A critical intermingling

As cryptocurrencies have grown in popularity, there has also been growing concern about cybercrime involvement…

1 hour ago

Kaiser Permanente data breach may have impacted 13.4 million patients

Healthcare service provider Kaiser Permanente disclosed a security breach that may impact 13.4 million individuals…

1 hour ago

Over 1,400 CrushFTP internet-facing servers vulnerable to CVE-2024-4040 bug

Over 1,400 CrushFTP internet-facing servers are vulnerable to attacks exploiting recently disclosed CVE-2024-4040 vulnerability. Over…

4 hours ago

Sweden’s liquor supply severely impacted by ransomware attack on logistics company

A ransomware attack on a Swedish logistics company Skanlog severely impacted the country's liquor supply. …

6 hours ago

CISA adds Cisco ASA and FTD and CrushFTP VFS flaws to its Known Exploited Vulnerabilities catalog

CISA adds Cisco ASA and FTD and CrushFTP VFS vulnerabilities to its Known Exploited Vulnerabilities…

17 hours ago

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA added the Windows Print Spooler flaw CVE-2022-38028 to its Known Exploited Vulnerabilities catalog.…

23 hours ago

This website uses cookies.