Security Affairs newsletter Round 486 by Pierluigi Paganini – INTERNATIONAL EDITION

Pierluigi Paganini August 25, 2024

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Hackers can take over Ecovacs home robots to spy on their owners
Russian national arrested in Argentina for laundering money of crooks and Lazarus APT
Qilin ransomware steals credentials stored in Google Chrome
Phishing attacks target mobile users via progressive web applications (PWA)
New malware Cthulhu Stealer targets Apple macOS users
China-linked APT Velvet Ant exploited zero-day to compromise Cisco switches
A cyberattack hit US oil giant Halliburton
U.S. CISA adds Dahua IP Camera, Linux Kernel and Microsoft Exchange Server bugs to its Known Exploited Vulnerabilities catalog
SolarWinds fixed a hardcoded credential issue in Web Help Desk
A cyberattack disrupted operations of US chipmaker Microchip Technology
Google addressed the ninth actively exploited Chrome zero-day this year
GitHub fixed a new critical flaw in the GitHub Enterprise Server 
Experts disclosed a critical information-disclosure flaw in Microsoft Copilot Studio
North Korea-linked APT used a new RAT called MoonPeak
Pro-Russia group Vermin targets Ukraine with a new malware family
A backdoor in millions of Shanghai Fudan Microelectronics RFID cards allows cloning
Ransomware payments rose from $449.1 million to $459.8 million
Previously unseen Msupedge backdoor targeted a university in Taiwan
Oracle NetSuite misconfiguration could lead to data exposure
Toyota disclosed a data breach after ZeroSevenGroup leaked stolen data on a cybercrime forum
CISA adds Jenkins Command Line Interface (CLI) bug to its Known Exploited Vulnerabilities catalog
Researchers uncovered new infrastructure linked to the cybercrime group FIN7Hacking
From 2018: DeepMasterPrints: deceive fingerprint recognition systems with MasterPrints generated with GANs
Large-scale extortion campaign targets publicly accessible environment variable files (.env)

International Press – Newsletter

Cybercrime  

  

 

 

      

 

 

  

 

  

Malware

  

      

  

  

  

  

Hacking

  

  

  

  

Intelligence and Information Warfare 

  

   

  

TodoSwift Disguises Malware Download Behind Bitcoin PDF  

China-Nexus Threat Group ‘Velvet Ant’ Leverages a Zero-Day to Deploy Malware on Cisco Nexus Switches  

  

  

Cybersecurity

Nvidia Sued for Scraping YouTube After 404 Media Investigation 

  

  

  

  

 

  

  

  

      

Follow me on Twitter:  and  and Mastodon

(SecurityAffairs – hacking, newsletter)



you might also like

leave a comment