Security Affairs newsletter Round 104 – News of the week
A new round of the weekly SecurityAffairs newsletter arrived!
The best news of the week with Security Affairs.
First of all, let me inform you that at the #infosec16 SecurityAffairs was awarded as The Best European Personal Security Blog
http://securityaffairs.co/wordpress/48202/breaking-news/securityaffairs-best-european-personal-security-blog.html
· ELF_IMEIJ, a new Linux malware is spreading in the wild |
· Security Affairs newsletter Round 103 – News of the week |
· Flaws in MAC address randomization implemented by vendors allow mobile tracking |
· CHIPSEC, Intel Security releases detection tool also for CIA EFI rootkits |
· Michael Hastings crash, incident or assassination? New doubts after Wikiliaks Vault 7 leak |
· Michael Hastings crash, incident or assassination? New doubts after Wikileaks Vault 7 leak |
· The CVE-2017-5638 Apache Struts 2 command execution flaw affects Cisco products |
· New variant of the macOS Proton RAT advertised on Russian cybercrime underground |
· Facebook and Instagram will not allow developers from scanning social media profiles for surveillance |
· Crooks hijack Magento Realex Payments extension to steal payment card data |
· Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2 |
· UK NCSC warns of cyber attacks powered by Russia against the political system |
· Security updates fix critical vulnerabilities in Flash player and Shockwave player |
· Mac users enjoy, FindZip macOS Ransomware decryption tool is available online for free |
· PetrWrap, a Petya-based ransomware, was used in targeted attacks |
· Turkey vs Holland – Hackers broke into Twitter CounterApp to hijack hundreds of High-Profile Accounts |
· Just one picture would have used to take over WhatsApp and Telegram accounts |
· Two Russian former FSB agents and two hackers indicted for 2014 Yahoo data breach |
· New MajikPOS Malware targets users in across North America and Canada |
· Privacy Guard – Lets evaluate privacy risks caused by the apps installed on our device |
· Drupal version 8.2.7 address multiple vulnerabilities in the current version of the popular CMS |
· CVE-2017-2636 Linux kernel flaw was spotted after seven years and quickly fixed |
· Welcome to Pwn2Own 2017 – Researchers hacked Adobe Reader, Edge, Ubuntu, and Safari |
· New APT Campaign based on Poison Ivy RAT with C&C in China has been reversed by MalwareMustDie |
· Who is spying on communications in the Washington area? A rogue state is suspected of mass surveillance |
· Global DDoS Threat Landscape Q4 2016 – US, UK and Netherlands top attacked countries |
· Symantec blames North Korean Lazarus APT group for recent attacks on banks |
· WikiLeaks will disclose CIA exploits to tech companies under specific conditions |
· Fappening 2.0 – More explicit pictures of celebrities leaked online |
Hurry up, subscribe to the newsletter, next Sunday you will receive all the news directly in your inbox.I desire to inform you that Security Affairs is now open to sponsored content.
I’ll offer the opportunity to:
• Insert banners of various sizes in all the posts on Security Affairs.
• Publish sponsored posts written by the customers that can include any kind of commercial reference.
• Arrange a monthly/quarterly/annual campaign (for big customers) to advertise customers’ activities and discoveries.
For more info contact me at pierluigi.paganini@securityaffairs.co
Thanks for supporting Security Affairs.
Once again thank you!
[adrotate banner=”9″]
Pierluigi Paganini
(Security Affairs – Newsletter)