Security Affairs newsletter Round 464 by Pierluigi Paganini – INTERNATIONAL EDITION

Pierluigi Paganini March 24, 2024

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Russia-linked APT29 targeted German political parties with WINELOADER backdoor
Mozilla fixed Firefox zero-days exploited at Pwn2Own Vancouver 2024
Large-scale Sign1 malware campaign already infected 39,000+ WordPress sites
German police seized the darknet marketplace Nemesis Market
Unsaflok flaws allow to open millions of doors using Dormakaba Saflok electronic locks
Pwn2Own Vancouver 2024: participants earned $1,132,500 for 29 unique 0-days
Critical Fortinet’s FortiClient EMS flaw actively exploited in the wild
Pwn2Own Vancouver 2024 Day 1 – team Synacktiv hacked a Tesla
Ivanti urges customers to fix critical RCE flaw in Standalone Sentry solution
New Loop DoS attack may target 300,000 vulnerable hosts
Critical flaw in Atlassian Bamboo Data Center and Server must be fixed immediately
Threat actors actively exploit JetBrains TeamCity flaws to deliver malware
BunnyLoader 3.0 surfaces in the threat landscape
Pokemon Company resets some users’ passwords
Ukraine cyber police arrested crooks selling 100 million compromised accounts
New AcidPour wiper targets Linux x86 devices. Is it a Russia’s weapon?
Players hacked during the matches of Apex Legends Global Series. Tournament suspended
Earth Krahang APT breached tens of government organizations worldwide
PoC exploit for critical RCE flaw in Fortra FileCatalyst transfer tool released
Fujitsu suffered a malware attack and probably a data breach
Remove WordPress miniOrange plugins, a critical flaw can allow site takeover
The Aviation and Aerospace Sectors Face Skyrocketing Cyber Threats
Email accounts of the International Monetary Fund compromised
Threat actors leaked 70,000,000+ records allegedly stolen from AT&T
“gitgub” malware campaign targets Github users with RisePro info-stealer

Cybercrime

   

Accounts of Internet users were appropriated: cyber police of the Kharkiv region exposed members of a criminal group 

      

Illegal darknet marketplace “Nemesis Market” shut down

Malware

  

  

  

  

Hacking  

  

 

  

 


   

 

Loop DoS: New Denial-of-Service Attack targets Application-Layer Protocols

CVE-2023-48788: Fortinet FortiClient EMS SQL Injection Deep Dive       

  

Intelligence and Information Warfare 

Brussels’ spy problem is the tip of the iceberg, says Belgian justice minister  

  

 

     

Cybersecurity          

  

  

  

  

  

Here’s the U.S. Government’s Antitrust Case Against Apple

Follow me on Twitter:  and  and Mastodon

(SecurityAffairs – hacking, Newsletter)



you might also like

leave a comment