Security Affairs newsletter Round 482 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Ukraine’s cyber operation shut down the ATM services of major Russian banks
A bug in Chrome Password Manager caused user credentials to disappear
BIND updates fix four high-severity DoS bugs in the DNS software suite
Terrorist Activity is Accelerating in Cyberspace – Risk Precursor to Summer Olympics and Elections
Progress Software fixed critical RCE CVE-2024-6327 in the Telerik Report Server
Critical bug in Docker Engine allowed attackers to bypass authorization plugins
Hackers exploit Microsoft Defender SmartScreen bug CVE-2024-21412 to deliver ACR, Lumma, and Meduza Stealers
Michigan Medicine data breach impacted 56953 patients
U.S. CISA adds Microsoft Internet Explorer and Twilio Authy bugs to its Known Exploited Vulnerabilities catalog
China-linked APT group uses new Macma macOS backdoor version
FrostyGoop ICS malware targets Ukraine
Hackers abused swap files in e-skimming attacks on Magento sites
US Gov sanctioned key members of the Cyber Army of Russia Reborn hacktivists group
EvilVideo, a Telegram Android zero-day allowed sending malicious APKs disguised as videos
SocGholish malware used to spread AsyncRAT malware
UK police arrested a 17-year-old linked to the Scattered Spider gang
U.S. CISA adds Adobe Commerce and Magento, SolarWinds Serv-U, and VMware vCenter Server bugs to its Known Exploited Vulnerabilities catalog

International Press – Newsletter

Cybercrime  

Walsall teenager arrested in joint West Midlands Police and FBI operation   

Treasury Sanctions Leader and Primary Member of the Cyber Army of Russia Reborn

Three arrested for crimes of computer damage for terrorist purposes      

Chinese ‘cybercrime syndicate’ behind gambling sites advertised at European sporting events   

Michigan Medicine notifies patients of health information breach

GXC Team Unmasked: The cybercriminal group targeting Spanish bank users with AI-powered phishing tools and Android malware        

Malware

Play Ransomware Group’s New Linux Variant Targets ESXi, Shows Ties With Prolific Puma

Fake Browser Updates Lead to BOINC Volunteer Computing Software     

Impact of FrostyGoop ICS Malware on Connected OT Systems

Malicious Python Package Targets macOS Developers To Access Their GCP Accounts  

Stargazers Ghost Network   

Hacking

Cursed tapes: Exploiting the EvilVideo vulnerability on Telegram for Android   

The Patchwork group has updated its arsenal, launching attacks for the first time using Brute Ratel C4 and an enhanced version of PGoShell 

Hacked, leaked, exposed: Why you should never use stalkerware apps   

Crooks Bypassed Google’s Email Verification to Create Workspace Accounts, Access 3rd-Party Services   

Hackers Leak Documents From Pentagon IT Provider Leidos       

Intelligence and Information Warfare 

How a North Korean Fake IT Worker Tried to Infiltrate Us    

Daggerfly: Espionage Group Makes Major Update to Toolset  

Terrorist Activity Is Accelerating In Cyberspace – Risk Precursor To Summer Olympics And Elections  

The Patchwork group has updated its arsenal, launching attacks for the first time using Brute Ratel C4 and an enhanced version of PGoShell   

HUR Hackers Shut Down Russian Banks and Internet Providers

Ukraine Hacks ATMs Across Russia in Ongoing Massive Cyberattack  

How the FBI Is Hunting North Korean Hackers Who Attacked U.S. Healthcare System

Another European Parliament member says he’s been targeted with commercial spyware           

Belarus-linked hackers target Ukrainian orgs with PicassoLoader malware  

Cybersecurity

New Recovery Tool to help with CrowdStrike issue impacting Windows endpoints

Helping our customers through the CrowdStrike outage      

This is the 2nd time CrowdStrike CEO George Kurtz has been at the center of a global tech failure  

CrowdStrike Is Too Big to Fail  

Tech giants say spyware victims should be able to sue NSO Group in US   

What I learned from the ‘Microsoft global IT outage’  

Docker Security Advisory: AuthZ Plugin Bypass Regression in Docker Engine  

US data breach victimization spikes   

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

Leave a Reply

Your email address will not be published. Required fields are marked *

Subscribe to our Newsletter