Security Affairs newsletter Round 437 by Pierluigi Paganini – International edition

Pierluigi Paganini September 17, 2023

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

TikTok fined €345M by Irish DPC for violating children’s privacy
Iranian Peach Sandstorm group behind recent password spray attacks
Dariy Pankov, the NLBrute malware author, pleads guilty
Dangerous permissions detected in top Android health apps
Caesars Entertainment paid a ransom to avoid stolen data leaks
Free Download Manager backdoored to serve Linux malware for more than 3 years
Lockbit ransomware gang hit the Carthage Area Hospital and the Clayton-Hepburn Medical Center in New York
UK Greater Manchester Police disclosed a data breach
The iPhone of a Russian journalist was infected with the Pegasus spyware
Kubernetes flaws could lead to remote code execution on Windows endpoints
Threat actor leaks sensitive data belonging to Airbus
A new ransomware family called 3AM appears in the threat landscape
Redfly group infiltrated an Asian national grid as long as six months
Mozilla fixed a critical zero-day in Firefox and Thunderbird
Microsoft September 2023 Patch Tuesday fixed 2 actively exploited zero-day flaws
Save the Children confirms it was hit by cyber attack
Adobe fixed actively exploited zero-day in Acrobat and Reader
A new Repojacking attack exposed over 4,000 GitHub repositories to hack
MGM Resorts hit by a cyber attack
Anonymous Sudan launched a DDoS attack against Telegram
Iranian Charming Kitten APT targets various entities in Brazil, Israel, and the U.A.E. using a new backdoor
GOOGLE FIXED THE FOURTH CHROME ZERO-DAY OF 2023
CISA adds recently discovered Apple zero-days to Known Exploited Vulnerabilities Catalog
UK and US sanctioned 11 members of the Russia-based TrickBot gang
New HijackLoader malware is rapidly growing in popularity in the cybercrime community
Some of TOP universities wouldn’t pass cybersecurity exam: left websites vulnerable
Evil Telegram campaign: Trojanized Telegram apps found on Google Play
Rhysida Ransomware gang claims to have hacked three more US hospitals
Akamai prevented the largest DDoS attack on a US financial company

Cybercrime

   

   

      

Site for Generating Non-Consensual AI Porn Restricts Content Following 404 Media Investigation 

   

Malware

      

   

Ransomware, extortion and the cyber crime ecosystem   

  

  

  

  

Hacking

  

  

Telegram Hit by a DDoS Attack: What Is the Cause Behind It?  

  

   

 

  

  

Intelligence and Information Warfare

  

  

Pegasus Infection of Galina Timchenko, exiled Russian Journalist and Publisher 

  

More Russian journalists investigating possible spyware infections  

Cybersecurity

  

  

   

ENISA Foresight 2030 Threats 

  

NCSC Cyber Incident Response scheme now available to more organisations  

Follow me on Twitter: and and Mastodon

(SecurityAffairs – hacking, newsletter)



you might also like

leave a comment