Security Affairs newsletter Round 350

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

Pay attention to Log4j attacks, Dutch National Cybersecurity Centre (NCSC) warnsVulnerabilities in Control Web Panel potentially expose Linux Servers to hackUS Treasury Department sanctions 4 Ukrainian officials for working with Russian intelligenceA bug in McAfee Agent allows running code with Windows SYSTEM privilegesExperts warn of anomalous spyware campaigns targeting industrial firmsGoogle Project Zero discloses details of two Zoom zero-day flawsMoonBounce UEFI implant spotted in a targeted APT41 attackConti ransomware gang started leaking files stolen from Bank IndonesiaFBI links the Diavol ransomware to the TrickBot gangCisco StarOS flaws could allow remote code execution and information disclosure hack impacted 483 accounts and resulted in a $34 million theft
Red Cross hit by a sophisticated cyberattackNew BHUNT Stealer targets cryptocurrency walletsSolarWinds Serv-U bug exploited by threat actors in the wild, Microsoft warnsNew DDoS IRC Bot distributed through Korean webHard platformsUK NCSC shares guidance for organizations to secure their communications with customersCISA warns of potential critical threats following attacks against UkraineBox flaw allowed to bypass MFA and takeover accountsIs White Rabbit ransomware linked to FIN8 financially motivated group?AlphV/BlackCat ransomware gang published data stolen from fashion giant Moncler
Financially motivated Earth Lusca threat actors targets organizations worldwide
Law enforcement shutdown the VPN service VPNLab used by many cybercriminal gangsMicrosoft releases Windows out-of-band emergency fixes for Win Server, VPN issuesA small number of users reported suspicious activity on their walletOracle Critical Patch Update for January 2022 will fix 483 new flawsZoho fixes a critical vulnerability (CVE-2021-44757) in Desktop Central solutionsHigh-Severity flaw in 3 WordPress plugins impacts 84,000 websitesExperts warn of attacks using a new Linux variant of SFile ransomwareKyiv blames Belarus-linked APT UNC1151 for recent cyberattackEuropean Union simulated a cyber attack on a fictitious Finnish power company
Microsoft spotted a destructive malware campaign targeting Ukraine
A new wave of Qlocker ransomware attacks targets QNAP NAS devicesThreat actors stole $18.7M from the Lympo NTF platform

Follow me on Twitter: @securityaffairs and Facebook

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 350 appeared first on Security Affairs.

Recent Posts
Contact Us

We're not around right now. But you can send us an email and we'll get back to you, asap.

Not readable? Change text. captcha txt