A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
| Ukraine’s cyber operation shut down the ATM services of major Russian banks |
| A bug in Chrome Password Manager caused user credentials to disappear |
| BIND updates fix four high-severity DoS bugs in the DNS software suite |
| Terrorist Activity is Accelerating in Cyberspace – Risk Precursor to Summer Olympics and Elections |
| Progress Software fixed critical RCE CVE-2024-6327 in the Telerik Report Server |
| Critical bug in Docker Engine allowed attackers to bypass authorization plugins |
| Hackers exploit Microsoft Defender SmartScreen bug CVE-2024-21412 to deliver ACR, Lumma, and Meduza Stealers |
| Michigan Medicine data breach impacted 56953 patients |
| U.S. CISA adds Microsoft Internet Explorer and Twilio Authy bugs to its Known Exploited Vulnerabilities catalog |
| China-linked APT group uses new Macma macOS backdoor version |
| FrostyGoop ICS malware targets Ukraine |
| Hackers abused swap files in e-skimming attacks on Magento sites |
| US Gov sanctioned key members of the Cyber Army of Russia Reborn hacktivists group |
| EvilVideo, a Telegram Android zero-day allowed sending malicious APKs disguised as videos |
| SocGholish malware used to spread AsyncRAT malware |
| UK police arrested a 17-year-old linked to the Scattered Spider gang |
| U.S. CISA adds Adobe Commerce and Magento, SolarWinds Serv-U, and VMware vCenter Server bugs to its Known Exploited Vulnerabilities catalog |
International Press – Newsletter
Cybercrime
Walsall teenager arrested in joint West Midlands Police and FBI operation
Treasury Sanctions Leader and Primary Member of the Cyber Army of Russia Reborn
Three arrested for crimes of computer damage for terrorist purposes
Chinese ‘cybercrime syndicate’ behind gambling sites advertised at European sporting events
Michigan Medicine notifies patients of health information breach
GXC Team Unmasked: The cybercriminal group targeting Spanish bank users with AI-powered phishing tools and Android malware
Malware
Play Ransomware Group’s New Linux Variant Targets ESXi, Shows Ties With Prolific Puma
Fake Browser Updates Lead to BOINC Volunteer Computing Software
Impact of FrostyGoop ICS Malware on Connected OT Systems
Malicious Python Package Targets macOS Developers To Access Their GCP Accounts
Stargazers Ghost Network
Hacking
Cursed tapes: Exploiting the EvilVideo vulnerability on Telegram for Android
The Patchwork group has updated its arsenal, launching attacks for the first time using Brute Ratel C4 and an enhanced version of PGoShell
Hacked, leaked, exposed: Why you should never use stalkerware apps
Crooks Bypassed Google’s Email Verification to Create Workspace Accounts, Access 3rd-Party Services
Hackers Leak Documents From Pentagon IT Provider Leidos
Intelligence and Information Warfare
How a North Korean Fake IT Worker Tried to Infiltrate Us
Daggerfly: Espionage Group Makes Major Update to Toolset
Terrorist Activity Is Accelerating In Cyberspace – Risk Precursor To Summer Olympics And Elections
The Patchwork group has updated its arsenal, launching attacks for the first time using Brute Ratel C4 and an enhanced version of PGoShell
HUR Hackers Shut Down Russian Banks and Internet Providers
Ukraine Hacks ATMs Across Russia in Ongoing Massive Cyberattack
How the FBI Is Hunting North Korean Hackers Who Attacked U.S. Healthcare System
Another European Parliament member says he’s been targeted with commercial spyware
Belarus-linked hackers target Ukrainian orgs with PicassoLoader malware
Cybersecurity
New Recovery Tool to help with CrowdStrike issue impacting Windows endpoints
Helping our customers through the CrowdStrike outage
This is the 2nd time CrowdStrike CEO George Kurtz has been at the center of a global tech failure
CrowdStrike Is Too Big to Fail
Tech giants say spyware victims should be able to sue NSO Group in US
What I learned from the ‘Microsoft global IT outage’
Docker Security Advisory: AuthZ Plugin Bypass Regression in Docker Engine
US data breach victimization spikes
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – hacking, newsletter)