Category Archives: Newsletter

Security Affairs newsletter Round 242

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

Iran – Government blocks Internet access in response to the protests
Twitter allows users to use 2FA without a phone number
After 1 Million of malware samples analyzed
Federal Communications Commission has cut off government funding for equipment from Chinese firms
Livingston School District hit by a ransomware attack
PoC exploit code for Apache Solr RCE flaw is available online
Raccoon Stealer campaign circumvents Microsoft and Symantec anti-spam messaging gateways
Czech intelligence report warns of Russian and Chinese activity in the country
Experts discovered control systems for aircraft warning lights open online
Facebook and Twitter warn of malicious SDK harvesting personal data from its accounts
Kaspersky addressed multiple issues in online protection solutions
Some Fortinet products used hardcoded keys and weak encryption for communications
Adobe revealed that the Magento Marketplace was hacked
Full(z) House Magecart group mix phishing and MiTM in its attacks
Law enforcement agencies arrested 79 people involved in fraudulent online purchases of flight tickets
Microsoft warns of Dexphot miner, an interesting polymorphic threat
Upbit cryptocurrency exchange hacked, crooks stole $48.5 million worth of ETH
A Ransomware infected the network of the cybersecurity firm Prosegur
RevengeHotels campaign – crooks target the hospitality industry
Dutch National Cyber Security Centre warns ransomware infected thousands of businesses
Great Plains center hit by ransomware attack
Group-IB presents its annual report on global threats to stability in cyberspace
International law enforcement operation shuts down Imminent Monitor RAT operations
The latest variant of the new Ginp Android Trojan borrows code from Anubis

Pierluigi Paganini

(SecurityAffairs – newsletter)

The post Security Affairs newsletter Round 242 appeared first on Security Affairs.

Security Affairs newsletter Round 241

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

Experts found undocumented access feature in Siemens SIMATIC PLCs
Tianfu Cup 2019 Day 1 – Chinese experts hacked Chrome, Edge, Safari, Office365
Crooks use carding bots to check stolen card data ahead of the holiday season
Experts report a rampant growth in the number of malicious, lookalike domains
Google addressed an XSS flaw in Gmail
New NextCry Ransomware targets Nextcloud instances on Linux servers
Tianfu Cup 2019 – 11 teams earned a total of 545,000 for their Zero-Day Exploits
Adobe announces end of support for Acrobat 2015 and Adobe Reader 2015
Alleged Magecart hackers planted a software skimmer into Macys Website
Belorussian authorities blocked ProtonMail following a wave of bomb threats
CTHoW v2.0 – Cyber Threat Hunting on Windows
CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance
Ransomware infected systems at state government of Louisiana
Chicago student charged with writing code to spread ISIS propaganda
Hackers leak 2TB of Data From Cayman National Bank stolen by Phineas Fisher
Monero Project website has been compromised to deliver a coin stealer
Ransomware Revival: Troldesh becomes a leader by the number of attacks
A critical flaw in Jetpack exposes millions of WordPress sites
DePriMon downloader uses a never seen installation technique
ENISA publishes a Threat Landscape for 5G Networks
Google will pay up to $1.5m for full chain RCE for Android on Titan M chips
Microsoft warns of growing DoppelPaymer Ransomware threat
Roboto, a new P2P botnet targets Linux Webmin servers
AccorHotels subsidiary Gekko Group exposes hotels and travelers data in massive data leak
French Rouen hospital hit by a ransomware attack
Payment solutions giant Edenred announces malware infection
Personal and social information of 1.2B people exposed on an open Elasticsearch install
Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison
T-Mobile discloses data breach affecting prepaid wireless customers
Catch Hospitality Group discloses PoS malware infection at its restaurants
Chinese smartphone vendor OnePlus discloses a new data breach
Kaspersky found dozens of flaws in 4 open-source VNC software

Pierluigi Paganini

(SecurityAffairs – newsletter)

The post Security Affairs newsletter Round 241 appeared first on Security Affairs.