Security Affairs newsletter Round 420 by Pierluigi Paganini – International edition

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

We are in the final!

Please vote for Security Affairs (https://securityaffairs.com/) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS
Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini

Please nominate Security Affairs as your favorite blog.

Nominate Pierluigi Paganini and Security Affairs here here: https://docs.google.com/forms/d/e/1FAIpQLSepvnj8b7QzMdLh7vWEDQDqohjBUsHyn3x3xRdYGCetwVy2DA/viewform

2021 data breach exposed data of 70 Million Luxottica customers
Cybercrime gang FIN7 returned and was spotted delivering Clop ransomware
US CISA warns of a Samsung vulnerability under active exploitation
February cyber incident will cost molten metal flow engineering firm Vesuvius £3.5 million
NPM packages found containing the TurkoRat infostealer
Lemon Group gang pre-infected 9 million Android devices for fraudulent activities
Apple fixed three new actively exploited zero-day vulnerabilities
KeePass 2.X Master Password Dumper allows retrieving the KeePass master password
Admin of the darknet carding platform Skynet Market pleads guilty
Critical fixed critical flaws in Cisco Small Business Switches
Ukraine, Ireland, Japan and Iceland join NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE)
Monitoring the dark web to identify threats to energy sector organizations
US Gov offers a $10M reward for a Russian ransomware actor
Multiple flaws in Teltonika industrial cellular router expose OT networks to hack
University admission platform Leverage EDU exposed student passports
Lacroix Group shut down three facilities after a ‘targeted cyberattack’
China-linked APT Mustang Panda targets TP-Link routers with a custom firmware implant
President Zelensky imposes sanctions against the Russian IT sector
CISA adds Ruckus bug and another six flaws to its Known Exploited Vulnerabilities catalog
Lancefly APT uses powerful Merdoor backdoor in attacks on Asian orgs
PharMerica data breach impacts more than 5.8 million individuals
New RA Group ransomware gang is the latest group using leaked Babuk source code
Introducing the DRM-Report Q1 2023: Unveiling the Current State of Ransomware
Former Ubiquiti employee gets 6 years in jail for stealing confidential data and extorting company
Former ByteDance executive alleges TikTok of wrongful conduct
The latest variant of the RapperBot botnet adds cryptojacking capabilities
Capita warns customers to assume that their data was stolen

International Press

Cybercrime

Former Employee Of Technology Company Sentenced To Six Years In Prison For Stealing Confidential Data And Extorting Company For Ransom  

Cyber attack contained at LACROIX

Russian National Charged with Ransomware Attacks Against Critical Infrastructure   

Man Pleads Guilty to Conspiracy to Sell Stolen Financial Information on Dark Web  

Knocking    down Hive: How the FBI ran its own ransomware decryption operation

Re-Victimization from Police-Auctioned Cell Phones

Inside the Italian Mafia’s Encrypted Phone of Choice

Hacking

Triple Threat: Breaking Teltonika Routers Three Ways   https://claroty.com/team82/research/triple-threat-breaking-teltonika-routers-three-ways

KeePass 2.X Master Password Dumper (CVE-2023-32784)   

Malware

RapperBot DDoS Botnet Expands into Cryptojacking   

Newly identified RA Group compromises companies in U.S. and South Korea with leaked Babuk source code   

Lemon Group’s Cybercriminal Businesses Built on Preinfected Devices

RATs found hiding in the npm attic       

Intelligence and Information Warfare

South Korea alleges spies messaged North Korean handlers via YouTube comments

Lancefly: Group Uses Custom Backdoor to Target Orgs in Government, Aviation, Other Sectors   

THE DRAGON WHO SOLD HIS CAMARO: ANALYZING CUSTOM ROUTER IMPLANT

The Underground History of Russia’s Most Ingenious Hacker Group

Cybersecurity

Executive fired from TikTok’s Chinese owner says Beijing had access to app data in termination suit   

The NATO CCDCOE welcomes new members Iceland, Ireland, Japan, and Ukraine  

Apple fixes three new zero-days exploited to hack iPhones, Macs   

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 420 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Leave a Reply

Your email address will not be published. Required fields are marked *

Subscribe to our Newsletter