Security Affairs newsletter Round 225 and Important Update

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog.

Once again thank you!

Crooks used rare Steganography technique to hack fully patched websites in Latin America

Jessica Alba ‘s Twitter account hacked, it posted racist and homophobic messages

Over 23 million stolen payment card data traded on the Dark Web in H1 2019

Android devices could be hacked by playing a video due to CVE-2019-2107 flaw

Facebook deleted Russia-Linked efforts focusing on Ukraine ahead of the election

Prolific Dark Web dealer of drugs pleads guilty

Sonicwall warns of a spike in the number of attacks involving encrypted malware and IoT malware

WordPress Plugin Facebook Widget affected by authenticated XSS

Capital One data breach: hacker accessed details of 106M customers before its arrest

Critical zero-days discovered in VxWorks RTOS, billions of devices at risk

Google Project Zero hackers disclose details and PoCs for 4 iOS RCE flaws

LAPD data breach exposes personal info of thousands of officers

Malware researchers analyzed an intriguing Java ATM Malware

Cyber attacks hit Louisiana schools ahead of years beginning

DHS warns of cyber attacks against small airplanes

Hacking avionics systems through the CAN bus

Hacking campaign is wiping Iomega NAS Devices exposed online

Hacking eCommerce sites based on OXID eShop by chaining 2 flaws

CISA warns of critical flaws in Prima FlexAir access control system

Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov

Cyber Defense Magazine – August 2019 has arrived. Enjoy it!

MICROCHIPS Act aims at improving tech supply chain

New Mirai botnet hides C2 server in the Tor network to prevent takedowns

Recently discovered Hexane group targets the oil and gas industry

Facebook dismantled influence campaigns focused on Middle East and Northern Africa

How to Reverse Engineer, Sniff & Bruteforce Vulnerable RF Adult Toys with WHID Elite

Lotsy group targets Italian and Spanish-speaking users

Nation-state actor uses new LookBack RAT to target US utilities

Over 1 Million payment cards from South Korea sold on the Dark Web

DRAGONBLOOD flaws allow hacking WPA3 protected WiFi passwords

SystemBC, a new proxy malware is being distributed via Fallout and RIG EK

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.