A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
| Mazda Connect flaws allow to hack some Mazda vehicles |
| Veeam Backup & Replication exploit reused in new Frag ransomware attack |
| Texas oilfield supplier Newpark Resources suffered a ransomware attack |
| Palo Alto Networks warns of potential RCE in PAN-OS management interface |
| iPhones in a law enforcement forensics lab mysteriously rebooted losing their After First Unlock (AFU) state |
| U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog |
| DPRK-linked BlueNoroff used macOS malware with novel persistence |
| Canada ordered ByteDance to shut down TikTok operations in the country over security concerns |
| Critical bug in Cisco UWRB access points allows attackers to run commands as root |
| INTERPOL: Operation Synergia II disrupted +22,000 malicious IPs |
| Memorial Hospital and Manor suffered a ransomware attack |
| South Korea fined Meta $15.67M for illegally collecting and sharing Facebook users |
| Synology fixed critical flaw impacting millions of DiskStation and BeePhotos NAS devices |
| ToxicPanda Android banking trojan targets Europe and LATAM, with a focus on Italy |
| U.S. CISA adds PTZOptics camera bugs to its Known Exploited Vulnerabilities catalog |
| Canadian authorities arrested alleged Snowflake hacker |
| Android flaw CVE-2024-43093 may be under limited, targeted exploitation |
| July 2024 ransomware attack on the City of Columbus impacted 500,000 people |
| Nigerian man Sentenced to 26+ years in real estate phishing scams |
| Russian disinformation campaign active ahead of 2024 US election |
| International law enforcement operation shut down DDoS-for-hire platform Dstat.cc |
| US Election 2024 – FBI warning about fake election videos |
| Chinese threat actors use Quad7 botnet in password-spray attacks |
International Press – Newsletter
Cybercrime
Tracking Redline developer: Maxim Rudometov
Cybercrime: Arrests in Hesse and Rhineland-Palatinate
Nigerian Man Sentenced to 26+ Years in Real Estate Phishing / Spoofing Scheme
Schneider Electric confirms dev platform breach after hacker steals data
Ransomware gang claims responsibility for cyber attack on Georgia hospital
INTERPOL cyber operation takes down 22,000 malicious IP addresses
Texas Oilfield Supplier Newpark Hit by Ransomware
VEEAM exploit seen used again with a new ransomware: “Frag”
Ransomware attack on German pharmaceutical wholesaler causes disruption in medicine supply
Analysing the cultural dimensions of cybercriminal groups — A case study on the Conti ransomware group
Malware
CRON#TRAP: Emulated Linux Environments as the Latest Tactic in Malware Staging
Typosquat Campaign Targeting npm Developers
ToxicPanda: a new banking trojan from Asia hit Europe and LATAM
Cloudy With a Chance of RATs: Unveiling APT36 and the Evolution of ElizaRAT
Roblox Developers Targeted with npm Packages Infected with Skuld Infostealer and Blank Grabber
Hacking
Attackers Abuse DocuSign API to Send Authentic-Looking Invoices At Scale
Unmasking VEILDrive: Threat Actors Exploit Microsoft Services for C2
Behind the Great Wall: Void Arachne Targets Chinese-Speaking Users With the Winos 4.0 C&C Framework
Every Doggo Has Its Day: Unleashing the Xiū Gǒu Phishing Kit
Multiple Vulnerabilities in the Mazda In-Vehicle Infotainment (IVI) System
Hacker says they banned ‘thousands’ of Call of Duty gamers by abusing anti-cheat flaw
Intelligence and Information Warfare
Georgia official asks social media sites to take down Russian disinformation video
Chinese researchers build military AI using Meta’s open-source Llama model — ChatBIT allegedly performs at around 90% of the performance of OpenAI GPT-4 LLM
Joint ODNI, FBI, and CISA Statement on US Election
FBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber Intrusions
Canada orders TikTok’s Canadian business to be dissolved but won’t block app
BlueNoroff Hidden Risk | Threat Actor Targets Macs with Fake Crypto News and Novel Persistence
The Chinese Military Is Weaponizing Facebook’s Open Source AI
Cybersecurity
Tracking the FBI’s Most Wanted: “RedLine” Info-Stealer Creator Maxim Rudometov
Rep. Yvette Clarke on AI-fueled disinformation: ‘We have not protected ourselves in time for this election cycle’
Columbus says ransomware gang stole personal data of 500,000 Ohio residents
South Korea fines Meta $15 million for illegally collecting information on Facebook users
Police Freak Out at iPhones Mysteriously Rebooting Themselves, Locking Cops Out
Palo Alto Networks warns of potential PAN-OS RCE vulnerability
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – hacking, newsletter)
