Security Affairs newsletter Round 197 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal

20% discount

Kindle Edition

Paper Copy

Once again thank you!

TA505 Group adds new ServHelper Backdoor and FlawedGrace RAT to its arsenal

Computers at the City Hall of Del Rio were infected by ransomware

German Watchdog will request Facebook changes

Unsecured MongoDB archive exposed 202 Million private resumes

Which is the link between Ryuk ransomware and TrickBot?

Zurich refuses to pay Mondelez for NotPetya damages because its ‘an act of war

A flaw in vCard processing could allow hackers to compromise a Win PC

Cranes, drills and other industrial machines exposed to hack by RF protocols

Mozilla will disable Adobe Flash by default starting from Firefox 69

Too many issues in Pentagon networks expose it to cybersecurity risks

Critical bug in Amadeus flight booking system affects 141 airlines

Experts link attack on Chilean interbank network Redbanc NK Lazarus APT

GreyEnergy: Welcome to 2019

I swiped right, Viewing sensitive data cached in your Safari browser.

Multiple Fortnite flaws allowed experts to takeover players accounts

Collection #1 dump, 773 million emails, 21 million passwords

Drupal fixes 2 critical code execution issues flaws in Drupal 7, 8.5 and 8.6

South Korea: hackers compromised Defense Acquisition Program Administration PCs

Unprotected server of Oklahoma Department of Securities exposes millions of government files

Android apps use the motion sensor to evade detection and deliver Anubis malware

Attacks in the wild leverage flaw in ThinkPHP Framework

Fallout Exploit Kit now includes exploit for CVE-2018-15982 Flash zero-day

Oracle critical patch advisory addresses 284 flaws, 33 critical

Twitter fixed a bug in its Android App that exposed Protected Tweets

6 Reasons We Need to Boost Cybersecurity Focus in 2019

A bug in Microsoft partner portal ‘exposes ‘ support requests to all partners

ES File Explorer vulnerabilities potentially impact 100 Million Users

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – Microsoft partner portal, data leak)

[adrotate banner=”5″] [adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.