Security Affairs newsletter Round 133 – News of the week

Pierluigi Paganini October 22, 2017

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Once again thank you!

·      ENISA – CTI – EU | Bonding EU Cyber Threat Intelligence
·      Flaws in Siemens Building Automation Controllers open to hack. Fix them asap
·      Hacker interview – Speaking with ICEMAN: Banks holes like in Cheese
·      Security Affairs newsletter Round 132 – News of the week
·      Swedish transport agencies targeted in DDoS cyber attacks
·      Iranian hackers compromised the UK leader Theresa Mays email account along with other 9,000 emails
·      Linux kernel affected by a local privilege escalation vulnerability
·      Pizza Hut notifies card breach while users have already reported fraudulent transactions
·      Wifi networks are vulnerable to hacking WPA KRACK attack
·      Wifi networks are vulnerable to WPA KRACK attack
·      BlackOasis APT leverages new Flash zero-day exploit to deploy FinSpy
·      Cyberespionage group stolen Microsoft vulnerabilities DB back in 2013
·      Even With The Best Email Spoofing Defences in The World, HMRC is Spoofed
·      ROCA vulnerability (CVE-2017-15361) allows attackers to recover users Private RSA Keys
·      BAE Systems report links Taiwan heist to North Korean LAZARUS APT
·      CUTLET MAKER ATM malware offered for 5000 USD on darknet forum
·      Google introduces new Advanced Protection feature to protect its users
·      South Africa – About 30-million identity numbers and other personal and financial information leaked online
·      The Necurs botnet is back spreading a downloader with new interesting features
·      Cyber espionage – China-Linked group leverages recently patched .NET Flaw
·      Microsoft provides details of a code execution vulnerability in Chrome
·      October 2017 Oracle Critical Patch Update addresses 252 Vulnerabilities
·      Threat actors started scanning for SSH Keys on websites
·      A new Mirai-Like IoT Botnet is growing in a new mysterious campaign
·      Cisco addresses a critical vulnerability in Cloud Services Platform (CSP)
·      Google launched Google Play Security Reward bug bounty program to protect apps in Play Store
·      URSNIF spam campaign expose new macro evasion tactics
·      Watch out! European Consumer Organisation warns of some kid GPS smartwatches have security flaws
·      Assemblyline – Canadas CSE intelligence Agency releases its malware analysis tool
·      Necurs botnet now spreading the Locky Ransomware via DDE Attacks
·      Proton malware spreading through supply-chain attack, victims should wipe their Macs
[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs – Newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]



you might also like

leave a comment