Security Affairs newsletter Round 462 by Pierluigi Paganini – INTERNATIONAL EDITION

Pierluigi Paganini March 10, 2024

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Threat actors breached two crucial systems of the US CISA
CISA adds JetBrains TeamCity bug to its Known Exploited Vulnerabilities catalog
Critical Fortinet FortiOS bug CVE-2024-21762 potentially impacts 150,000 internet-facing devices
QNAP fixed three flaws in its NAS devices, including an authentication bypass
Threat actors breached two crucial systems of the US CISA
CISA adds JetBrains TeamCity bug to its Known Exploited Vulnerabilities catalog
Critical Fortinet FortiOS bug CVE-2024-21762 potentially impacts 150,000 internet-facing devices
QNAP fixed three flaws in its NAS devices, including an authentication bypass
Snake, a new Info Stealer spreads through Facebook messages
National intelligence agency of Moldova warns of Russia attacks ahead of the presidential election
CISA adds Apple iOS and iPadOS memory corruption bugs to its Known Exploited Vulnerabilities Catalog
Linux Malware targets misconfigured misconfigured Apache Hadoop, Confluence, Docker, and Redis servers
CISA ADDS ANDROID PIXEL AND SUNHILLO SURELINE BUGS TO ITS KNOWN EXPLOITED VULNERABILITIES CATALOG
Watch out, GhostSec and Stourmous groups jointly conducting ransomware attacks
LockBit 3.0’s Bungled Comeback Highlights the Undying Risk of Torrent-Based (P2P) Data Leakage
Apple emergency security updates fix two new iOS zero-days
VMware urgent updates addressed Critical ESXi Sandbox Escape bugs
US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks
CISA ADDS MICROSOFT WINDOWS KERNEL BUG USED BY LAZARUS APT TO ITS KNOWN EXPLOITED VULNERABILITIES CATALOG
Experts disclosed two severe flaws in JetBrains TeamCity On-Premises software
Ukraine’s GUR hacked the Russian Ministry of Defense
Some American Express customers’ data exposed in a third-party data breach
META hit with privacy complaints by EU consumer groups
New GTPDOOR backdoor is designed to target telecom carrier networks
Threat actors hacked Taiwan-based Chunghwa Telecom
New Linux variant of BIFROSE RAT uses deceptive domain strategies
Eken camera doorbells allow ill-intentioned individuals to spy on you
U.S. Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp

Cybercrime

 

American Express credit cards EXPOSED in third-party vendor data breach – account numbers and names among details accessed in hack  

  

 

Hacker attack on Xplain: National Cyber Security Centre publishes data analysis report  

Malware

  

  

  

  

Hunting for Fortinet CVE-2024-21762: Vulnerability Research for Detection Engineering  

Hacking  

  

      

  

 

  

Intelligence and Information Warfare 

How the Chinese civilian and military intelligence agencies confronting CIA and the Pentagon 

Software, ciphers, secret documents — cyber specialists of the State Security Service hacked the Russian Ministry of Defense  

  

  

Cybersecurity          

  

There is no clear cybersecurity policy  

  

        

Follow me on Twitter:  and  and Mastodon

(SecurityAffairs – hacking, newsletter)



you might also like

leave a comment