{"id":163707,"date":"2024-05-26T12:08:39","date_gmt":"2024-05-26T12:08:39","guid":{"rendered":"https:\/\/securityaffairs.com\/?p=163707"},"modified":"2024-05-26T12:08:41","modified_gmt":"2024-05-26T12:08:41","slug":"security-affairs-newsletter-round-473-by-pierluigi-paganini-international-edition","status":"publish","type":"post","link":"https:\/\/securityaffairs.com\/163707\/breaking-news\/security-affairs-newsletter-round-473-by-pierluigi-paganini-international-edition.html","title":{"rendered":"<\/gwmw>Security Affairs newsletter Round 473 by Pierluigi Paganini \u2013 INTERNATIONAL EDITION<\/gwmw>"},"content":{"rendered":"
<\/div>\n

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.<\/gwmw><\/gwmw><\/h2>\n\n\n\n

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.<\/p>\n\n\n\n

Fake AV websites used to distribute info-stealer malware<\/a><\/td><\/tr>
MITRE December 2023 attack: Threat actors created rogue VMs to evade detection<\/a><\/td><\/tr>
An XSS flaw in GitLab allows attackers to take over accounts<\/a><\/td><\/tr>
Google fixes eighth actively exploited Chrome zero-day this year, the third in a month<\/a><\/td><\/tr>
Usage of TLS in DDNS Services leads to Information Disclosure in Multiple Vendors<\/a><\/td><\/tr>
Recall feature in Microsoft Copilot+ PCs raises privacy and security concerns<\/a><\/td><\/tr>
APT41: The threat of KeyPlug against Italian industries<\/a><\/td><\/tr>
Critical SQL Injection flaws impact Ivanti Endpoint Manager (EPM)<\/a><\/td><\/tr>
Chinese actor ‘Unfading Sea Haze’ remained undetected for five years<\/a><\/td><\/tr>
A consumer-grade spyware app found in check-in systems of 3 US hotels<\/a><\/td><\/tr>
Critical Veeam Backup Enterprise Manager authentication bypass bug<\/a><\/td><\/tr>
An ongoing malware campaign exploits Microsoft Exchange Server flaws<\/a><\/td><\/tr>
Critical GitHub Enterprise Server Authentication Bypass bug. Fix it now!<\/a><\/td><\/tr>
OmniVision disclosed a data breach after the 2023 Cactus ransomware attack<\/a><\/td><\/tr>
CISA adds NextGen Healthcare Mirth Connect flaw to its Known Exploited Vulnerabilities catalog<\/a><\/td><\/tr>
Blackbasta group claims to have hacked Atlas, one of the largest US oil distributors<\/a><\/td><\/tr>
Experts warn of a flaw in Fluent Bit utility that is used by major cloud platforms and firms<\/a><\/td><\/tr>
Experts released PoC exploit code for RCE in QNAP QTS<\/a><\/td><\/tr>
GitCaught campaign relies on Github and Filezilla to deliver multiple malware<\/a><\/td><\/tr>
Two students uncovered a flaw that allows to use laundry machines for free<\/a><\/td><\/tr>
Grandoreiro Banking Trojan is back and targets banks worldwide<\/a><\/td><\/tr>
Healthcare firm WebTPA data breach impacted 2.5 million individuals<\/a><\/td><\/tr>
North Korea-linked Kimsuky used a new Linux backdoor in recent attacks<\/a><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

International Press \u2013 Newsletter<\/strong><\/p>\n\n\n\n

Cybercrime<\/strong><\/p>\n\n\n\n

Healthcare company WebTPA discloses breach affecting 2.5 million people<\/a>    <\/p>\n\n\n\n

Cybercriminals Are Targeting Elections In India With Influence Campaigns<\/a>  <\/a><\/p>\n\n\n\n

Laundering cash from healthcare, romance scams lands US man in prison for a decade<\/a><\/p>\n\n\n\n

He Trained Cops to Fight Crypto Crime\u2014and Allegedly Ran a $100M Dark-Web Drug Market<\/a>   <\/a><\/p>\n\n\n\n

Man behind deepfake Biden robocall indicted on felony charges, faces $6M fine<\/a><\/p>\n\n\n\n

Dark Web Profile: Dispossessor Ransomware<\/a>   <\/p>\n\n\n\n

 <\/h4>\n\n\n\n

Malware<\/strong><\/p>\n\n\n\n

Grandoreiro banking trojan unleashed: X-Force observing emerging global campaigns<\/a>  <\/p>\n\n\n\n

GitCaught: Threat Actor Leverages GitHub Repository for Malicious Infrastructure<\/a> <\/p>\n\n\n\n

Spyware found on US hotel check-in computers<\/a> <\/p>\n\n\n\n

A Catalog of Hazardous AV Sites \u2013 A Tale of Malware Hosting<\/a>   <\/p>\n\n\n\n

CVE-2024-4978: Backdoored Justice AV Solutions Viewer Software Used in Apparent Supply Chain Attack<\/a>  <\/p>\n\n\n\n

Malware Transmutation! – Unveiling the Hidden Traces of BloodAlchemy<\/a><\/p>\n\n\n\n

Hacking<\/strong> <\/p>\n\n\n\n

Two Santa Cruz students uncover security bug that could let millions do their laundry for free<\/a> <\/p>\n\n\n\n

QNAP QTS zero-day in Share feature gets public RCE exploit<\/a><\/p>\n\n\n\n

Linguistic Lumberjack: Attacking Cloud Services via Logging Endpoints (Fluent Bit – CVE-2024-4323)<\/a><\/p>\n\n\n\n

Positive Technologies detects a series of attacks via Microsoft Exchange Server<\/a>      <\/p>\n\n\n\n

Usage of TLS in DDNS Services leads to Information Disclosure in Multiple Vendors<\/a><\/p>\n\n\n\n

Infiltrating Defenses: Abusing VMware in MITRE\u2019s Cyber Intrusion<\/a>  <\/p>\n\n\n\n

Google fixes eighth actively exploited Chrome zero-day this year<\/a><\/p>\n\n\n\n

Intelligence and Information Warfare<\/strong> <\/p>\n\n\n\n

IOC Extinction? China-Nexus Cyber Espionage Actors Use ORB Networks to Raise Cost on Defenders<\/a><\/p>\n\n\n\n

Russia\u2019s New Counterspace Weapon Is in the Same Orbit as a US Satellite<\/a> <\/p>\n\n\n\n

Operational Monitoring and Control Of Small Arms Weapons Within the People\u2019s Liberation Army<\/a> <\/p>\n\n\n\n

Deep Dive Into Unfading Sea Haze: A New Threat Actor in the South China Sea<\/a>        <\/p>\n\n\n\n

Putin hijacked Austria\u2019s spy service. Now he’s going after its government<\/a>  <\/p>\n\n\n\n

Cybersecurity <\/strong>  <\/p>\n\n\n\n

Palantir\u2019s Military AI Tech Conference Sounds Absolutely Terrifying<\/a>  <\/p>\n\n\n\n

UK watchdog looking into Microsoft AI taking screenshots<\/a><\/p>\n\n\n\n

Wargames director Jackie Schneider on why cyber is one of ‘the most interesting scholarly puzzles’<\/a>   <\/p>\n\n\n\n

US Looks to Create Paranoia Amongst Hackers to Fight Ransomware Gangs, but How?<\/a>       <\/p>\n\n\n\n

Follow me on Twitter: @securityaffairs<\/strong><\/a> and Facebook<\/strong><\/a> and Mastodon<\/a><\/p>\n\n\n\n

Pierluigi Paganini<\/strong><\/a><\/p>\n\n\n\n

(<\/strong>SecurityAffairs<\/strong><\/a>\u00a0\u2013<\/strong>\u00a0hacking,\u00a0newsletter)<\/strong><\/gwmw><\/p>\n","protected":false},"excerpt":{"rendered":"

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Fake AV websites used to distribute info-stealer malware MITRE December 2023 attack: Threat actors created rogue […]<\/p>\n","protected":false},"author":1,"featured_media":35167,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[3323],"tags":[88,182,4112,9508,9506,10918,30,687,841,1533],"class_list":["post-163707","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-breaking-news","tag-cybercrime","tag-data-breach","tag-hacking","tag-hacking-news","tag-information-security-news","tag-it-information-security","tag-malware-2","tag-pierluigi-paganini","tag-security-affairs","tag-security-news"],"yoast_head":"\n杭州江阴科强工业胶带有限公司