A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
We are in the final!
Please vote for Security Affairs (https://securityaffairs.com/) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS
Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini
Please nominate Security Affairs as your favorite blog.
Nominate Pierluigi Paganini and Security Affairs here here: https://docs.google.com/forms/d/e/1FAIpQLSepvnj8b7QzMdLh7vWEDQDqohjBUsHyn3x3xRdYGCetwVy2DA/viewform
| 2021 data breach exposed data of 70 Million Luxottica customers |
| Cybercrime gang FIN7 returned and was spotted delivering Clop ransomware |
| US CISA warns of a Samsung vulnerability under active exploitation |
| February cyber incident will cost molten metal flow engineering firm Vesuvius £3.5 million |
| NPM packages found containing the TurkoRat infostealer |
| Lemon Group gang pre-infected 9 million Android devices for fraudulent activities |
| Apple fixed three new actively exploited zero-day vulnerabilities |
| KeePass 2.X Master Password Dumper allows retrieving the KeePass master password |
| Admin of the darknet carding platform Skynet Market pleads guilty |
| Critical fixed critical flaws in Cisco Small Business Switches Ukraine, Ireland, Japan and Iceland join NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE) |
| Monitoring the dark web to identify threats to energy sector organizations |
| US Gov offers a $10M reward for a Russian ransomware actor |
| Multiple flaws in Teltonika industrial cellular router expose OT networks to hack |
| University admission platform Leverage EDU exposed student passports |
| Lacroix Group shut down three facilities after a ‘targeted cyberattack’ |
| China-linked APT Mustang Panda targets TP-Link routers with a custom firmware implant |
| President Zelensky imposes sanctions against the Russian IT sector |
| CISA adds Ruckus bug and another six flaws to its Known Exploited Vulnerabilities catalog |
| Lancefly APT uses powerful Merdoor backdoor in attacks on Asian orgs PharMerica data breach impacts more than 5.8 million individuals |
| New RA Group ransomware gang is the latest group using leaked Babuk source code |
| Introducing the DRM-Report Q1 2023: Unveiling the Current State of Ransomware |
| Former Ubiquiti employee gets 6 years in jail for stealing confidential data and extorting company |
| Former ByteDance executive alleges TikTok of wrongful conduct |
| The latest variant of the RapperBot botnet adds cryptojacking capabilities |
| Capita warns customers to assume that their data was stolen |
International Press
Cybercrime
Former Employee Of Technology Company Sentenced To Six Years In Prison For Stealing Confidential Data And Extorting Company For Ransom
Cyber attack contained at LACROIX
Russian National Charged with Ransomware Attacks Against Critical Infrastructure
Man Pleads Guilty to Conspiracy to Sell Stolen Financial Information on Dark Web
Knocking down Hive: How the FBI ran its own ransomware decryption operation
Re-Victimization from Police-Auctioned Cell Phones
Inside the Italian Mafia’s Encrypted Phone of Choice
Hacking
Triple Threat: Breaking Teltonika Routers Three Ways https://claroty.com/team82/research/triple-threat-breaking-teltonika-routers-three-ways
KeePass 2.X Master Password Dumper (CVE-2023-32784)
Malware
RapperBot DDoS Botnet Expands into Cryptojacking
Newly identified RA Group compromises companies in U.S. and South Korea with leaked Babuk source code
Lemon Group’s Cybercriminal Businesses Built on Preinfected Devices
RATs found hiding in the npm attic
Intelligence and Information Warfare
South Korea alleges spies messaged North Korean handlers via YouTube comments
Lancefly: Group Uses Custom Backdoor to Target Orgs in Government, Aviation, Other Sectors
THE DRAGON WHO SOLD HIS CAMARO: ANALYZING CUSTOM ROUTER IMPLANT
The Underground History of Russia’s Most Ingenious Hacker Group
Cybersecurity
Executive fired from TikTok’s Chinese owner says Beijing had access to app data in termination suit
The NATO CCDCOE welcomes new members Iceland, Ireland, Japan, and Ukraine
Apple fixes three new zero-days exploited to hack iPhones, Macs
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – hacking, newsletter)
The post Security Affairs newsletter Round 420 by Pierluigi Paganini – International edition appeared first on Security Affairs.
