{"id":164832,"date":"2024-06-23T09:01:00","date_gmt":"2024-06-23T09:01:00","guid":{"rendered":"https:\/\/securityaffairs.com\/?p=164832"},"modified":"2024-06-23T09:07:38","modified_gmt":"2024-06-23T09:07:38","slug":"security-affairs-newsletter-round-477-by-pierluigi-paganini-international-edition","status":"publish","type":"post","link":"https:\/\/securityaffairs.com\/164832\/security\/security-affairs-newsletter-round-477-by-pierluigi-paganini-international-edition.html","title":{"rendered":"<\/gwmw>Security Affairs newsletter Round 477 by Pierluigi Paganini \u2013 INTERNATIONAL EDITION<\/gwmw>"},"content":{"rendered":"
<\/div>\n

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.<\/h2>\n\n\n\n

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.<\/p>\n\n\n\n

US government sanctions twelve Kaspersky Lab executives<\/a><\/td><\/tr>
Experts found a bug in the Linux version of RansomHub ransomware<\/a><\/td><\/tr>
UEFICANHAZBUFFEROVERFLOW flaw in Phoenix SecureCore UEFI firmware potentially impacts hundreds of PC and server models<\/a><\/td><\/tr>
Russia-linked APT Nobelium targets French diplomatic entities<\/a><\/td><\/tr>
US bans sale of Kaspersky products due to risks to national security<\/a><\/td><\/tr>
Atlassian fixed six high-severity bugs in Confluence Data Center and Server<\/a><\/td><\/tr>
China-linked spies target Asian Telcos since at least 2021<\/a><\/td><\/tr>
New Rust infostealer Fickle Stealer spreads athrough various attack methods<\/a><\/td><\/tr>
An unpatched bug allows anyone to impersonate Microsoft corporate email accounts<\/a><\/td><\/tr>
Smishing Triad Is Targeting Pakistan To Defraud Banking Customers At Scale<\/a><\/td><\/tr>
Alleged researchers stole $3 million from Kraken exchange<\/a><\/td><\/tr>
Google Chrome 126 update addresses multiple high-severity flaws<\/a><\/td><\/tr>
Chip maker giant AMD investigates a data breach<\/a><\/td><\/tr>
Cryptojacking campaign targets exposed Docker APIs<\/a><\/td><\/tr>
VMware fixed RCE and privilege escalation bugs in vCenter Server<\/a><\/td><\/tr>
Meta delays training its AI using public content shared by EU users <\/a><\/td><\/tr>
The Financial Dynamics Behind Ransomware Attacks<\/a><\/td><\/tr>
Empire Market owners charged with operating $430M dark web marketplace<\/a><\/td><\/tr>
China-linked Velvet Ant uses F5 BIG-IP malware in cyber espionage campaign<\/a><\/td><\/tr>
LA County\u2019s Department of Public Health (DPH) data breach impacted over 200,000 individuals<\/a><\/td><\/tr>
Spanish police arrested an alleged member of the Scattered Spider group<\/a><\/td><\/tr>
Online job offers, the reshipping and money mule scams<\/a><\/td><\/tr>
ASUS fixed critical remote authentication bypass bug in several routers<\/a><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

International Press \u2013 Newsletter<\/strong><\/p>\n\n\n\n

Cybercrime<\/strong>  <\/p>\n\n\n\n

Alleged Boss of \u2018Scattered Spider\u2019 Hacking Group Arrested<\/a>  <\/p>\n\n\n\n

L.A. DPH – Public Health Responds to Privacy Breach<\/a><\/p>\n\n\n\n

Owners of \u201cEmpire Market\u201d Charged in Chicago With Operating $430 Million Dark Web Marketplace<\/a>   <\/p>\n\n\n\n

Keytronic Says Personal Information Stolen in Ransomware Attack<\/a>  <\/p>\n\n\n\n

Smishing Triad Is Targeting Pakistan To Defraud Banking Customers At Scale<\/a>  <\/p>\n\n\n\n

BEYOND ILLUSIONS – Report 2024<\/a>   <\/gwmw><\/p>\n\n\n\n

Malware<\/strong><\/p>\n\n\n\n

Attackers deploying new tactics in campaign targeting exposed Docker APIs<\/a>  <\/p>\n\n\n\n

LevelBlue Labs Discovers Highly Evasive, New Loader Targeting Chinese Organizations<\/a>  <\/p>\n\n\n\n

Fickle Stealer Distributed via Multiple Attack Chain<\/a>  <\/p>\n\n\n\n

A REVERSE ENGINEER\u2019S JOURNEY WITH POWERSHELL AND XWORM<\/a><\/p>\n\n\n\n

RansomHub Draws in Affiliates with Multi-OS Capability and High Commission Rates<\/a>  <\/strong><\/p>\n\n\n\n

Hacking<\/strong><\/p>\n\n\n\n

Bypassing 2FA with phishing and OTP bots<\/a> <\/p>\n\n\n\n

New ARM ‘TIKTAG’ attack impacts Google Chrome, Linux systems<\/a><\/p>\n\n\n\n

“Researchers” exploit Kraken exchange bug, steal $3 million in crypto<\/a><\/p>\n\n\n\n

Security bug allows anyone to spoof Microsoft employee emails<\/a>  <\/p>\n\n\n\n

Perplexity AI is susceptible to prompt injection<\/a><\/p>\n\n\n\n

UEFICANHAZBUFFEROVERFLOW: WIDESPREAD IMPACT FROM VULNERABILITY IN POPULAR PC AND SERVER FIRMWARE<\/a>  <\/p>\n\n\n\n

SolarWinds Serv-U (CVE-2024-28995) exploitation: We see you!<\/a>  <\/p>\n\n\n\n

Intelligence and Information Warfare<\/strong> <\/p>\n\n\n\n

China-Nexus Threat Group \u2018Velvet Ant\u2019 Abuses F5 Load Balancers for Persistence<\/a> <\/p>\n\n\n\n

Government and military officials fair targets of Pegasus spyware, NSO Group argues<\/a>     <\/p>\n\n\n\n

Sustained Campaign Using Chinese Espionage Tools Targets Telcos<\/a> <\/p>\n\n\n\n

ANSSI: The Nobelium intrusion set<\/a><\/p>\n\n\n\n

Top 10 Generative AI Models Mimic Russian Disinformation Claims A Third of the Time, Citing Moscow-Created Fake Local News Sites as Authoritative Sources<\/a>   <\/p>\n\n\n\n

Cybersecurity <\/strong> <\/p>\n\n\n\n

London Hospitals Knew of Cyber Vulnerabilities Years Before Hack<\/a>  <\/p>\n\n\n\n

Mandiant Threat Hunting Guide Snowake<\/a><\/p>\n\n\n\n

Building AI Technology for Europeans in a Transparent and Responsible Way<\/a>  <\/p>\n\n\n\n

Biden bans US sales of Kaspersky software over Russia ties<\/a><\/p>\n\n\n\n

Treasury Sanctions Kaspersky Lab Leadership in Response to Continued Cybersecurity Risks<\/a><\/p>\n\n\n\n

Security Headers to prevent phishing<\/a>            <\/gwmw><\/gwmw><\/p>\n\n\n\n

Pierluigi Paganini<\/strong><\/a><\/gwmw><\/p>\n\n\n\n

Follow me on Twitter: @securityaffairs<\/strong><\/a> and Facebook<\/strong><\/a> and Mastodon<\/a><\/p>\n\n\n\n

(<\/strong>SecurityAffairs<\/strong><\/a> \u2013<\/strong> hacking, newsletter)<\/strong><\/gwmw><\/p>\n\n\n\n

<\/gwmw><\/p>\n","protected":false},"excerpt":{"rendered":"

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. US government sanctions twelve Kaspersky Lab executives Experts found a bug in the Linux version of RansomHub ransomware […]<\/p>\n","protected":false},"author":1,"featured_media":35167,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[3323,55],"tags":[88,182,4112,9508,9506,10918,30,3529,687,841,1533],"class_list":["post-164832","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-breaking-news","category-security","tag-cybercrime","tag-data-breach","tag-hacking","tag-hacking-news","tag-information-security-news","tag-it-information-security","tag-malware-2","tag-newsletter","tag-pierluigi-paganini","tag-security-affairs","tag-security-news"],"yoast_head":"\n杭州江阴科强工业胶带有限公司