The new weekly SecurityAffairs newsletter has arrived! Every week the best security articles from Security Affairs are delivered to your email box for free.
Enjoy a new round of weekly SecurityAffairs newsletters, including international press.
| Google Fixes 3 Android Flaws That Google Actively Exploited |
| Iran-Linked APT TA453 Targets Windows and macOS Systems |
| Bangladesh government website leaks data of millions of citizens |
| A man has been charged with a cyberattack on a Discovery Bay water treatment facility. |
| Progress alerts customers to new critical flaws in MOVEit Transfer software. |
| CISA and FBI warned that Truebot could infect US- and Canada-based organizations. |
| Cisco has warned about a flaw in its Nexus 9000 series switches that allows encrypted traffic modification. |
| StackRot, a new Linux kernel privilege escalation vulnerability |
| Ransomware accounts for 54% of cyber threats in healthcare. |
| The CVE-2022-29303 flaw in SolarView products can be exploited for attacks on the energy sector. RedEnergy Stealer-as-a-Ransomware Used in Wild Attacks |
| Port of Nagoya, Japan’s largest port, ransomware attack |
| NoName(057)16’s DDoSia Project Upgrade |
| Swedish Data Protection Authority Rules for the Use of Google Analytics |
| MOVEit Attack on Aon Exposes Dublin Airport Employee Data |
| Neo_Net runs eCrime campaigns for banking customers worldwide. |
| Hackers stole millions of dollars worth of crypto assets from the Poly Network platform. |
| 335,923 of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997 |
| Anonymous Means Claims to Steal 30 Million Microsoft Customer Accounts |
| SmugX: Chinese APTs use HTML smuggling to target European ministries and embassies. How Data Loss Affects Your Organization |
| CISA Adds Samsung and D-link Bugs to Catalog of Known Exploit Vulnerabilities |
| The new Windows Meduza Stealer targets dozens of crypto wallets and password managers. |
| Experts Discover New Variant of RUSTBUCKET macOS Malware Linked to North Korea |
| WordPress site using Ultimate Member plugin is under attack. |
cyber crime
Malvertising used as entry vector for BlackCat, actors also utilize SpyBoy Terminator
Neo Net | The boss of eCrime in Spain
The port of #Nagoya, the largest port in Japan, has been attacked by #ransomware.
Tracy residents charged with computer attack on Discovery Bay water treatment facility
malware
North Korea attacks using a new variant of RUSTBUCKET.
Meduza Stealer: What is it and how does it work?
Redefining Ransomware: The RedEnergy Stealer-as-a-Ransomware Attack
MAR-10445155-1.v1 Truebot activity infecting US and Canada based networks
hacking
CVE-2023-27997 is exploitable and 69% of FortiGate firewalls are vulnerable.
Dublin Airport Employee Pays for Data ‘Compromised’ by Criminals
Goals of the DDoSia project following NoName057 (16)
Aggressively Exploited Industrial Control System Hardware – SolarView Series
information and information war
Chinese threat actors targeting Europe in SMUGX campaign
Welcome to New York: Exploring LNK and TA453’s Foray into Mac Malware
cyber security
4 Companies Should Stop Using Google Analytics
Researchers Discover Privilege Escalation Vulnerability in New Linux Kernel ‘StackRot’Bangladeshi government website leaks citizen’s personal information
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(security work– hacking, newsletter)
Pierluigi Paganini’s Post Security Affairs Newsletter Round 427 – International Edition first published in Security Affairs.