Security Affairs newsletter Round 420 by Pierluigi Paganini – International edition
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
Please vote for Security Affairs (https://securityaffairs.com/) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS
Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini
Please nominate Security Affairs as your favorite blog.
Nominate Pierluigi Paganini and Security Affairs here here: https://docs.google.com/forms/d/e/1FAIpQLSepvnj8b7QzMdLh7vWEDQDqohjBUsHyn3x3xRdYGCetwVy2DA/viewform
2021 data breach exposed data of 70 Million Luxottica customersCybercrime gang FIN7 returned and was spotted delivering Clop ransomwareUS CISA warns of a Samsung vulnerability under active exploitationFebruary cyber incident will cost molten metal flow engineering firm Vesuvius £3.5 millionNPM packages found containing the TurkoRat infostealerLemon Group gang pre-infected 9 million Android devices for fraudulent activitiesApple fixed three new actively exploited zero-day vulnerabilitiesKeePass 2.X Master Password Dumper allows retrieving the KeePass master passwordAdmin of the darknet carding platform Skynet Market pleads guiltyCritical fixed critical flaws in Cisco Small Business Switches
Ukraine, Ireland, Japan and Iceland join NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE)Monitoring the dark web to identify threats to energy sector organizationsUS Gov offers a $10M reward for a Russian ransomware actorMultiple flaws in Teltonika industrial cellular router expose OT networks to hackUniversity admission platform Leverage EDU exposed student passportsLacroix Group shut down three facilities after a ‘targeted cyberattack’China-linked APT Mustang Panda targets TP-Link routers with a custom firmware implantPresident Zelensky imposes sanctions against the Russian IT sectorCISA adds Ruckus bug and another six flaws to its Known Exploited Vulnerabilities catalogLancefly APT uses powerful Merdoor backdoor in attacks on Asian orgs
PharMerica data breach impacts more than 5.8 million individualsNew RA Group ransomware gang is the latest group using leaked Babuk source codeIntroducing the DRM-Report Q1 2023: Unveiling the Current State of RansomwareFormer Ubiquiti employee gets 6 years in jail for stealing confidential data and extorting companyFormer ByteDance executive alleges TikTok of wrongful conductThe latest variant of the RapperBot botnet adds cryptojacking capabilitiesCapita warns customers to assume that their data was stolen
International Press
Cyber attack contained at LACROIX
Russian National Charged with Ransomware Attacks Against Critical Infrastructure
Man Pleads Guilty to Conspiracy to Sell Stolen Financial Information on Dark Web
Knocking down Hive: How the FBI ran its own ransomware decryption operation
Re-Victimization from Police-Auctioned Cell Phones
Inside the Italian Mafia’s Encrypted Phone of Choice
Hacking
Triple Threat: Breaking Teltonika Routers Three Ways https://claroty.com/team82/research/triple-threat-breaking-teltonika-routers-three-ways
KeePass 2.X Master Password Dumper (CVE-2023-32784)
RapperBot DDoS Botnet Expands into Cryptojacking
Lemon Group’s Cybercriminal Businesses Built on Preinfected Devices
RATs found hiding in the npm attic
Intelligence and Information Warfare
South Korea alleges spies messaged North Korean handlers via YouTube comments
Lancefly: Group Uses Custom Backdoor to Target Orgs in Government, Aviation, Other Sectors
THE DRAGON WHO SOLD HIS CAMARO: ANALYZING CUSTOM ROUTER IMPLANT
The Underground History of Russia’s Most Ingenious Hacker Group
Cybersecurity
Executive fired from TikTok’s Chinese owner says Beijing had access to app data in termination suit
The NATO CCDCOE welcomes new members Iceland, Ireland, Japan, and Ukraine
Apple fixes three new zero-days exploited to hack iPhones, Macs
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, newsletter)
The post Security Affairs newsletter Round 420 by Pierluigi Paganini – International edition appeared first on Security Affairs.
About The Author
