Security Affairs newsletter Round 340
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.
If you want to also receive for free the newsletter with the international press subscribe here.
Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email serverGravityRAT returns disguised as an end-to-end encrypted chat appIntel and AMD address high severity vulnerabilities in products and driversNew evolving Abcbot DDoS botnet targets Linux systemsRetail giant Costco discloses data breach, payment card data exposedHTML Smuggling technique used in phishing and malspam campaignsmacOS Zero-Day exploited in watering hole attacks on users in Hong KongHow we broke the cloud with two lines of code: the full story of ChaosDBBotenaGo botnet targets millions of IoT devices using 33 exploitsThreat actors hacked a server of a Queensland water supplier and remained undetected for 9 monthsDoJ sentenced to 10 years Russian ‘King of Fraud’ behind the fraud scheme 3veIranian threat actors attempt to buy stolen data of US organizations, FBI warnsCVE-2021-3064: Easily exploitable RCE flaw in Palo Alto Networks in GlobalProtect VPNSophisticated Android spyware PhoneSpy infected thousands of Korean phonesVMware discloses a severe flaw in vCenter Server that has yet to fixA flaw in WP Reset PRO WordPress plugin allows wiping the installation DBCitrix addresses a critical flaw in ADC, GatewayTaiwan Government faces 5 Million hacking attempts dailyExperts found 14 new flaws in BusyBox, millions of devices at riskTeamTNT group targets poorly configured Docker servers exposing REST APIs
Robinhood data breach exposes 7 Million users’ informationMicrosoft Patch Tuesday security updates for November 2021 fix 2 Zero-Days actively exploitedClop gang exploiting CVE-2021-35211 RCE in SolarWinds Serv-U in recent attackInternational law enforcement arrested REvil ransomware affiliates in Romania and KuwaitUS DoS offers a reward of up to $10M for leaders of REvil ransomware gangUkrainian REvil affiliate charged with Ransomware Attack on KaseyaRansomware attack disrupted store operations in the Netherlands and GermanyHealthcare – Patient or Perpetrator? – The Cybercriminals WithinOperation Cyclone targets Clop Ransomware affiliatesNation-state actors target critical sectors by exploiting the CVE-2021-40539 flaw
Hungarian official confirms Hungary used NSO Group Pegasus spywareFBI warns of fraudulent schemes using cryptocurrency ATMs and QR for paymentsExperts spotted a phishing campaign impersonating security firm ProofpointNew Magecart group uses an e-Skimmer that avoids VMs and sandboxesCasinos of tribal communities are losing millions in Ransomware attacks
(SecurityAffairs – hacking, newsletter)