A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
Cybercrime
Personal data leaked: Toyota informs customers after ransomware attack
Threat actors misuse OAuth applications to automate financially driven attacks
Russian occult banker from Hive ransomware network arrested in Paris
Disrupting the gateway services to cybercrime
HACKER’S AUDACIOUS DEMANDS SHAKE KYBER NETWORK
Kraft Heinz reviewing claims of cyberattack but internal systems ‘operating normally’
Fred Hutch patients receiving email threats following cyberattack
5 Critical Steps to Prepare for AI-Powered Malware in Your Connected Asset Ecosystem
Routers Roasting On An Open Firewall: The KV-Botnet Investigation
Unveiling NKAbuse: a new multiplatform threat abusing the NKN protocol
Actively Exploited Vulnerability in QNAP VioStor NVR: Fixed, Patches Available
Ten new Android banking trojans targeted 985 bank apps in 2023
Hacking
USBSamurai — A Remotely Controlled Malicious USB HID Injecting Cable for less than 10$
CAREFUL!! IMPORTANT SECURITY FAILURE IN ANDROID 14 AND 13
ActiveMQ CVE-2023-46604 Exploited by Kinsing: Threat Analysis
McDonald’s Ice Cream Machine Hackers Say They Found the ‘Smoking Gun’ That Killed Their Startup
pfSense Security: Sensing Code Vulnerabilities with SonarCloud
Cloud squatting: How attackers can use deleted cloud assets against you
Intelligence and Information Warfare
Ukraine’s top mobile operator hit by biggest cyber attack of war so far
UK government risking ‘catastrophic ransomware attack,’ parliamentary report warns
Cyber spy agency warns foreign adversaries will ‘weaponize’ AI to influence next federal election
CISA and Partners Release Advisory on Russian SVR-affiliated Cyber Actors Exploiting CVE-2023-42793
Chinese hackers invade critical US power and water systems: Report
Cybersecurity
PSA: Critical POP Chain Allowing Remote Code Execution Patched in WordPress 6.4.2
CISA and ENISA enhance their Cooperation
CISA adds Qlik bugs to exploited vulnerabilities catalog
THE DECEMBER 2023 SECURITY UPDATE REVIEW
Ubiquiti Users Somehow Being Fed Access to Strangers’ Security Cameras
Exercise Crossed Swords Tests Allied Cyber Operations
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, newsletter)