Security Affairs newsletter Round 238

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog.

Experts found 17 apps in the Apple App Store infected with clicker Trojan

NCSC Report: U.K. neutralized over 600 cyber attacks this year

Ransomware hit TrialWorks, law firms and lawyers were not able to access court documents

New FuxSocy Ransomware borrows code from defunct Cerber

Raccoon info stealer already infected 100,000+ worldwide

SWEED targets precision engineering companies in Italy

U.S. fast-food restaurant chain Krystal suffered a payment card incident

UniCredit bank discloses a data breach that impacted 3 million of Italian clients

Up to 2,000 Georgia websites have been hit by cyber attacks

Details for 1.3 million Indian payment cards available on the dark web, its the biggest single card database ever

Fancy Bear continues to target sporting and anti-doping organizations

US Federal Communications Commission proposes cutting off funds for Chinese telecom equipment

Users online claim Kudankulam nuclear power plant was hit by a cyber attack

Emsisoft released a free decryption tool for Paradise ransomware

Its official, administrative network at Kudankulam Nuclear Power Plant was infected with DTrack

Network Solutions data breach – hacker accessed data of more 22 Million accounts

Thousands of Xiaomi FURRYTAIL pet feeders exposed to hack

WhatsApp sued Israeli surveillance firm NSO Group and its parent Q Cyber Technologies

Xhelper, a new piece of Android malware that is infecting 2K+ devices each month

21 Million stolen credentials from Fortune 500 companies available on the dark web

China-linked APT41 group targets telecommunications companies with new backdoor

eIDAS flaws allowed attackers to impersonate any EU citizen or business

Hackers behind Uber and Lynda hacks plead guilty in data breaches

Israel is going to extradite to US the Russian hacker Alexei Bourkov

CVE-2019-13720 flaw in Chrome exploited in Operation WizardOpium attacks

Facebook agrees to pay a fine of $643,000 in Cambridge Analytica scandal

Kaspersky researchers found a Chrome 0-day exploited in attacks in the wild

sPower it the first renewable energy provider hit by a cyber attack that caused communications outages

CVE-2019-2114 flaw allows hackers to plant malware on Android devices via NFC beaming

Desjardins credit union data breach bigger than initially thought

Proton Technologies makes the code of ProtonMail iOS App open source

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.