{"id":168159,"date":"2024-09-08T11:58:29","date_gmt":"2024-09-08T11:58:29","guid":{"rendered":"https:\/\/securityaffairs.com\/?p=168159"},"modified":"2024-09-08T11:58:31","modified_gmt":"2024-09-08T11:58:31","slug":"security-affairs-newsletter-round-488-by-pierluigi-paganini-international-edition","status":"publish","type":"post","link":"https:\/\/securityaffairs.com\/168159\/breaking-news\/security-affairs-newsletter-round-488-by-pierluigi-paganini-international-edition.html","title":{"rendered":"Security Affairs newsletter Round 488 by Pierluigi Paganini \u2013 INTERNATIONAL EDITION"},"content":{"rendered":"
<\/div>\n

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.<\/h2>\n\n\n\n

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.<\/p>\n\n\n\n

U.S. CISA adds Draytek VigorConnect and Kingsoft WPS Office bugs to its Known Exploited Vulnerabilities catalog<\/a><\/td><\/tr>
A flaw in WordPress LiteSpeed Cache Plugin allows account takeover<\/a><\/td><\/tr>
Car rental company Avis discloses a data breach<\/a><\/td><\/tr>
SonicWall warns that SonicOS bug exploited in attacks<\/a><\/td><\/tr>
Apache fixed a new remote code execution flaw in Apache OFBiz<\/a><\/td><\/tr>
Russia-linked GRU Unit 29155 targeted critical infrastructure globally<\/a><\/td><\/tr>
Veeam fixed a critical flaw in Veeam Backup & Replication software<\/a><\/td><\/tr>
Earth Lusca adds multiplatform malware KTLVdoor to its arsenal<\/a><\/td><\/tr>
Is Russian group APT28 behind the cyber attack on the German air traffic control agency (DFS)?<\/a><\/td><\/tr>
Quishing, an insidious threat to electric car owners<\/a><\/td><\/tr>
Google fixed actively exploited Android flaw CVE-2024-32896<\/a><\/td><\/tr>
Discontinued D-Link DIR-846 routers are affected by code execution flaws. Replace them!<\/a><\/td><\/tr>
Head Mare hacktivist group targets Russia and Belarus<\/a><\/td><\/tr>
Zyxel fixed critical OS command injection flaw in multiple routers<\/a><\/td><\/tr>
VMware fixed a code execution flaw in Fusion hypervisor<\/a><\/td><\/tr>
U.S. oil giant Halliburton disclosed a data breach<\/a><\/td><\/tr>
Vulnerabilities in Microsoft apps for macOS allow stealing permissions<\/a><\/td><\/tr>
Three men plead guilty to running MFA bypass service OTP.Agency<\/a><\/td><\/tr>
Transport for London (TfL) is dealing with an ongoing cyberattack<\/a><\/td><\/tr>
Lockbit gang claims the attack on the Toronto District School Board (TDSB)<\/a><\/td><\/tr>
A new variant of Cicada ransomware targets VMware ESXi systems<\/a><\/td><\/tr>
An air transport security system flaw allowed to bypass airport security screenings<\/a><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

International Press \u2013 Newsletter<\/strong><\/p>\n\n\n\n

Cybercrime<\/strong>  <\/p>\n\n\n\n

<\/a>Cambodian scam giant handled $49 billion in crypto transactions since 2021, researchers say<\/a><\/p>\n\n\n\n

Toronto school board confirms students\u2019 info stolen as LockBit claims breach<\/a>      <\/p>\n\n\n\n

Owners of 1-Time Passcode Theft Service Plead Guilty<\/a>  <\/p>\n\n\n\n

Spoofed GlobalProtect Used to Deliver Unique WikiLoader Variant<\/a>  <\/p>\n\n\n\n

Exclusive: LockBit 3.0 appears to be duplicating old listings as Design Intoto named a second time<\/a>  <\/p>\n\n\n\n

Malla: Demystifying Real-world Large Language Model Integrated Malicious Services<\/a>  <\/p>\n\n\n\n

EXPOSED: OnlyFans Hack Gone Wrong \u2013 How Cyber Criminals Turn into Victims Overnight<\/a><\/p>\n\n\n\n

Planned Parenthood confirms cyberattack as RansomHub claims breach<\/a><\/p>\n\n\n\n

Russian authorities able to identify train saboteur from anonymous Telegram account<\/a>  <\/p>\n\n\n\n

Malware<\/strong><\/p>\n\n\n\n

BlackSuit Ransomware<\/a><\/gwmw><\/p>\n\n\n\n

Year-Long Campaign of Malicious npm Packages Targeting Roblox Users<\/a>  <\/p>\n\n\n\n

Rocinante: The trojan horse that wanted to fly<\/a>   <\/p>\n\n\n\n

Earth Lusca Uses KTLVdoor Backdoor for Multiplatform Intrusion<\/a>\u00a0 \u00a0\u00a0\u00a0<\/p>\n\n\n\n

FBI: Play ransomware gang has attacked 300 orgs since 2022<\/a>  <\/p>\n\n\n\n

New Android SpyAgent Campaign Steals Crypto Credentials via Image Recognition<\/a>\u00a0\u00a0<\/gwmw><\/gwmw><\/p>\n\n\n\n

Hacking<\/strong><\/p>\n\n\n\n

Bypassing airport security via SQL injection<\/a><\/p>\n\n\n\n

Dragon Hactivists on Prowl<\/a>      <\/p>\n\n\n\n

Hiding in plain sight: Techniques and defenses against `\/proc` filesystem manipulation in Linux<\/a><\/p>\n\n\n\n

How multiple vulnerabilities in Microsoft apps for macOS pave the way to stealing permissions<\/a><\/p>\n\n\n\n

Learning Rust for fun and backdoo-rs<\/a>    <\/p>\n\n\n\n

Head Mare: adventures of a unicorn in Russia and Belarus<\/a>       <\/p>\n\n\n\n

Earth Lusca Uses KTLVdoor Backdoor for Multiplatform Intrusion<\/a>  <\/p>\n\n\n\n

Windows Wi-Fi Driver RCE Vulnerability \u2013 CVE-2024-30078<\/a> <\/p>\n\n\n\n

Advanced forensic techniques for recovering hidden data in wearable devices<\/a>  <\/p>\n\n\n\n

Recent SonicWall Firewall Vulnerability Potentially Exploited in the Wild<\/a><\/p>\n\n\n\n

Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401<\/a>   <\/strong><\/p>\n\n\n\n

Intelligence and Information Warfare<\/strong> <\/p>\n\n\n\n

The Geopolitics of Cyber Espionage Goes Far Beyond Sensitive Information Theft<\/a>  <\/p>\n\n\n\n

Social Media as an Intelligence Tool for Information Warfare<\/a><\/p>\n\n\n\n

NATO Wants to Boost Its Undersea Defenses<\/a>     <\/p>\n\n\n\n

German air traffic control was attacked by pro-Russian hackers<\/a>  <\/p>\n\n\n\n

Russian Military Cyber Actors Target US and Global Critical Infrastructure<\/a><\/p>\n\n\n\n

NSA\u2019s China-focused \u2018innovation pipeline\u2019 targets economic imbalances<\/a><\/p>\n\n\n\n

US cracks down on Russian disinformation before 2024 election<\/a>      <\/p>\n\n\n\n

BlindEagle Targets Colombian Insurance Sector with BlotchyQuasar<\/a><\/p>\n\n\n\n

Chinese APT Abuses VSCode to Target Government in Asia<\/a>  <\/p>\n\n\n\n

With charges and sanctions, US takes aim at Russian disinformation ahead of November election<\/a><\/p>\n\n\n\n

North Korea Aggressively Targeting Crypto Industry with Well-Disguised Social Engineering Attacks<\/a>      <\/strong><\/p>\n\n\n\n

Cybersecurity<\/strong><\/p>\n\n\n\n

A concrete example of ES|QL and SOC detection rules<\/a>  <\/p>\n\n\n\n

TfL faces ‘ongoing cyber security incident’<\/a>  <\/p>\n\n\n\n

What is the future of cross-border data flows?<\/a>  <\/p>\n\n\n\n

Managing Cybersecurity in the Age of Artificial Intelligence<\/a>   <\/a><\/p>\n\n\n\n

Clearview AI Faces \u20ac30.5M Fine for Building Illegal Facial Recognition Database<\/a><\/p>\n\n\n\n

X is hiring staff for security and safety after two years of layoffs<\/a>  <\/p>\n\n\n\n

Critical Account Takeover Vulnerability Patched in LiteSpeed Cache Plugin<\/a>  <\/p>\n\n\n\n

A scientific approach to eavesdropping via HDMI<\/a>  <\/p>\n\n\n\n

Follow me on Twitter: @securityaffairs<\/strong><\/a> and Facebook<\/strong><\/a> and Mastodon<\/a><\/p>\n\n\n\n

Pierluigi Paganini<\/strong><\/a><\/p>\n\n\n\n

(<\/strong>SecurityAffairs<\/strong><\/a>\u00a0\u2013<\/strong>\u00a0hacking,\u00a0newsletter)<\/strong><\/p>\n\n\n\n

<\/p>\n\n\n\n

<\/gwmw><\/p>\n","protected":false},"excerpt":{"rendered":"

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. U.S. CISA adds Draytek VigorConnect and Kingsoft WPS Office bugs to its Known Exploited Vulnerabilities catalog A flaw […]<\/p>\n","protected":false},"author":1,"featured_media":35167,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[3323],"tags":[88,182,4112,9508,9506,10918,30,3529,687,1533],"class_list":["post-168159","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-breaking-news","tag-cybercrime","tag-data-breach","tag-hacking","tag-hacking-news","tag-information-security-news","tag-it-information-security","tag-malware-2","tag-newsletter","tag-pierluigi-paganini","tag-security-news"],"yoast_head":"\n杭州江阴科强工业胶带有限公司