Security Affairs newsletter Round 135 – News of the week

Pierluigi Paganini November 05, 2017

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Once again thank you!

IOActive disclosed 2 critical flaws in global satellite telecommunications Inmarsats SATCOM systems
Matrix Ransomware being distributed through malvertising
Security Affairs newsletter Round 134 – News of the week
Hashcat 4.0.0 now can crack passwords and salts up to length 256
Industrial Products of many vendors still vulnerable to KRACK attack
Investigation Underway at Heathrow Airport After USB Drive Containing Sensitive Security Documents Found on Sidewalk
iPhone Apps you granted camera access can secretly take photos and record video
New Dutch legal framework could cause Mozilla to take off the Dutch CA from its trust list.
Experts spotted a new strain of the Sage Ransomware that implements Anti-Analysis capabilities
FireEye releases GoCrack, a free managed Password Cracking Tool
Gaza Cybergang is back, it leverages new tools against new targets
Vulnerabilities in Google Issue Tracker exposed details about unpatched flaws
CSE Malware ZLab – Full report of Bad Rabbit attack
MBR-ONI ransomware involved in targeted attacks against Japanese organizations
Oracle issues an emergency patch for a bug in Oracle Identity Manager, apply it now!
Silence Group is borrowing Carbanak TTPs in ongoing bank attacks
WordPress releases the version 4.8.3 to address a serious SQL Injection vulnerability
2014 Data Breach – 46.2 Million Malaysian Mobile phone numbers leaked online
OpenSSL patches vulnerabilities discovered with Google OSS-Fuzz fuzzing service
Threat actors using default SSH credentials to hijack Ethereum miners
Undetectable ATM shimmers used to steal Chip Based Card worldwide
White hat hackers earn over $500,000 for mobile exploits at Mobile Pwn2Own 2017 competition
Hacker threatens Canadian University to dump student info unless the university pay a ransom
Tor Project fixed TorMoil, a critical Tor Browser flaw that can leak users IP Address
Fake WhatsApp app in official Google #Play Store downloaded by over a million Android users
Hackers poisoned Google Search results to spread Zeus Panda banking Trojan
US DoJ Identifies at least 6 Russian Government officials Involved in DNC hack
Estonia suspends security digital certificates for up to 760,000 state-issued electronic
FireEye announced the arrest of LeakTheAnalyst, the hacker who claimed to have breached its systems
Threat actors using default SSH credentials to hijack Ethereum miners
OpenSSL patches vulnerabilities discovered with #Google OSSFuzz fuzzing service

 

[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs – Newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]



you might also like

leave a comment