Breaking News

Security Affairs newsletter Round 190 – News of the week

newsletternewsletter

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal

20% discount

Kindle Edition

Paper Copy

Digging The Deep WebDigging The Deep Web

Once again thank you!

· 6,500+ sites deleted after Dark Web hosting provider Daniels Hosting hack
·      Hacking Gmails UX with from fields for phishing attacks
·      Instagram glitch exposed some user passwords
·      Suspected APT29 hackers behind attacks on US gov agencies, think tanks, and businesses
·      CarsBlues Bluetooth attack Affects tens of millions of vehicles
·      Cybaze ZLab – Yoroi team analyzed malware used in recent attacks on US entities attributed to APT29
·      Israel aims at hardening aviation industry assets from cyberattack
·      Tianfu Cup PWN hacking contest – White hat hackers earn $1 Million for Zero-Day exploits
·      Experts analyzed how Iranian OilRIG hackers tested their weaponized documents
·      Hackers target Drupal servers chaining several flaws, including Drupalgeddon2 and DirtyCOW
·      Mac users using Exodus cryptocurrency wallet targeted by a small spam campaign
·      TP-Link fixes 2 Remote Code Execution flaws in TL-R600VPN SOHO Router and other issues
·      Two hackers involved in the TalkTalk hack sentenced to prison
·      A flaw in US Postal Service website exposed data on 60 Million Users
·      Amazon UK is notifying a data breach to its customers days before Black Friday
·      Experts found flaws in Dell EMC and VMware Products. Patch them now!
·      Facebook increases rewards for its bug bounty program and facilitate bug submission
·      Sofacy APT group used a new tool in latest attacks, the Cannon
·      Chaining 3 zero-days allowed pen testers to hack Apple macOS computers
·      Experts found first Mirai bot targeting Linux servers via Hadoop YARN flaw
·      Flaw allowing identity spoofing affects authentication based on German eID cards
·      13 fraudulent apps into Google Play have been downloaded 560,000+ times
·      Beware Black Friday & Cyber Monday shoppers: fake products, credit cards scams and other types of fraud
·      Exclusive Cybaze ZLab – Yoroi – Hunting Cozy Bear, new campaign, old habits
·      New Emotet Thanksgiving campaign differs from previous ones
·      Software company OSIsoft has suffered a data breach
·      VMware fixed Workstation flaw disclosed at the Tianfu Cup PWN competition
·      Chat app Knuddels fined €20k under GDPR regulation
·      North Korea-linked group Lazarus targets Latin American banks
·      US Government is asking allies to ban Huawei equipment
·      Facebook appeals UK fine in Cambridge Analytica privacy Scandal

 

[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs – Newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Published by
Pierluigi Paganini
Tags: NewsletterPierluigi PaganiniSecurity Affairs
7 years ago

Recent Posts

DOJ moves to seize $7.74M in crypto linked to North Korean IT worker scam

US seeks to seize $7.74M in crypto linked to North Korean fake IT worker schemes,…

10 hours ago

OpenAI bans ChatGPT accounts linked to Russian, Chinese cyber ops

OpenAI banned ChatGPT accounts tied to Russian and Chinese hackers using the tool for malware,…

18 hours ago

New Mirai botnet targets TBK DVRs by exploiting CVE-2024-3721

A new variant of the Mirai botnet exploits CVE-2024-3721 to target DVR systems, using a…

20 hours ago

BadBox 2.0 botnet infects millions of IoT devices worldwide, FBI warns

BadBox 2.0 malware has infected millions of IoT devices globally, creating a botnet used for…

21 hours ago

Over 950K weekly downloads at risk in ongoing supply chain attack on Gluestack packages

A supply chain attack hit NPM, threat actors compromised 16 popular Gluestack packages, affecting 950K+…

2 days ago

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 48

Security Affairs Malware newsletter includes a collection of the best articles and research on malware…

2 days ago