Security Affairs newsletter Round 342

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

Italy’s Antitrust Agency fines Apple and Google for aggressive practices of data acquisitionHAEICHI-II: Interpol arrested +1,000 suspects linked to various cybercrimesIKEA hit by a cyber attack that uses stolen internal reply-chain emailsMarine services provider Swire Pacific Offshore (SPO) hit by Clop ransomwareThreat actors target crypto and NFT communities with Babadeda crypterExclusive: Resecurity discovered 0-day vulnerability in TP-Link Wi-Fi 6 devicesAPT C-23 group targets Middle East with an enhanced Android spyware variantNew Linux CronRAT hides in cron jobs to evade detection in Magecart attacksSeveral GoDaddy brands impacted in recent data breachIranian threat actors exploit MS MSHTML bug to steal Google and Instagram credentials
FBI warns of crooks targeting online shoppers during the holiday season
VMware addresses File Read and SSRF flaws in vCenter ServerA vulnerable honeypot exposed online can be compromised in 24 hoursApple sues NSO Group for abusing state-sponsored Pegasus spywareExpert discloses details of flaws in Oracle VirtualBoxMalware are already attempting to exploit new Windows Installer zero-dayAndroid.Cynos.7.origin trojan infected +9 million Android devicesExperts warn of RCE flaw in Imunify360 security platformExpert released PoC exploit code for Microsoft Exchange CVE-2021-42321 RCE bugExpert disclosed an exploit for a new Windows zero-day local privilege elevation issue
US govt warns critical infrastructure of ransomware attacks during holidays
New GoDaddy data breach impacted 1.2 million customersUtah Imaging Associates data breach impacts 583,643 patientsIran’s Mahan Air claims it has failed a cyber attack, hackers say the oppositeNew Memento ransomware uses password-protected WinRAR archives to block access to the filesUS SEC warns investors of ongoing fraudulent communications claiming from the SECExperts found 11 malicious Python packages in the PyPI repositoryResearchers were able to access the payment portal of the Conti gangAttackers compromise Microsoft Exchange servers to hijack internal email chains

Follow me on Twitter: @securityaffairs and Facebook

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 342 appeared first on Security Affairs.

Recent Posts
Contact Us

We're not around right now. But you can send us an email and we'll get back to you, asap.

Not readable? Change text. captcha txt