Security Affairs newsletter Round 340
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
News
Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server
Threat actors hacked email servers of the FBI to distribute spam email impersonating FBI warnings of fake cyberattacks. The email...
GravityRAT returns disguised as an end-to-end encrypted chat app
Threat actors are distributing the GravityRAT remote access trojan masqueraded as an end-to-end encrypted chat application named SoSafe Chat. Threat actors...
Intel and AMD address high severity vulnerabilities in products and drivers
Chipmakers Intel and AMD addressed several vulnerabilities in their products, including high-risk issues in software drivers. Intel and AMD released...
New evolving Abcbot DDoS botnet targets Linux systems
Qihoo 360’s Netlab detailed a new evolving DDoS botnet called Abcbot with wormable capabilities that targets Linux systems. Researchers from...
Retail giant Costco discloses data breach, payment card data exposed
Costco Wholesale Corporation discloses a data breach, threat actors had access to customers’ payment card information. Retail giant Costco Wholesale...
A multi-stage PowerShell based attack targets Kazakhstan
This blog post was authored by Hossein Jazi. On November 10 we identified a multi-stage PowerShell attack using a document...
HTML Smuggling technique used in phishing and malspam campaigns
Threat actors are increasingly using the HTML smuggling technique in phishing campaigns, Microsoft researchers warn. Microsoft experts warn that threat actors are...
The importance of backing up
What does backing up something mean? Backing up is the act of making a copy or copies of a file....
macOS Zero-Day exploited in watering hole attacks on users in Hong Kong
Google revealed that threat actors recently exploited a zero-day vulnerability in macOS to deliver malware to users in Hong Kong....
Could Apple’s new MacBooks signal a change in direction on security?
Apple recently announced a new line of completely overhauled MacBook Pros. Much has been written about their new design, new...
How we broke the cloud with two lines of code: the full story of ChaosDB
Wiz Research Team disclosed technical details about the discovery of the ChaosDB vulnerability in Azure Cosmos DB database solution. In...
BotenaGo botnet targets millions of IoT devices using 33 exploits
Researchers at AT&T discovered a new BotenaGo botnet that is using thirty three exploits to target millions of routers and IoT devices....
Threat actors hacked a server of a Queensland water supplier and remained undetected for 9 months
Threat actors compromised a server managing customer data for a Queensland water supplier and remained undetected for nine months. A...
DoJ sentenced to 10 years Russian ‘King of Fraud’ behind the fraud scheme 3ve
The US DoJ sentenced a Russian man for operating a large-scale digital advertising fraud scheme called Methbot (‘3ve’). The US...
Murder-for-hire, money laundering, and more: How organised criminals work online
Europol has released an extensive report into serious and organized crime, including how these groups use the internet to aid...
Iranian threat actors attempt to buy stolen data of US organizations, FBI warns
The FBI warned private industry partners of attempts by an Iranian threat actor to buy stolen information belonging to US...
CVE-2021-3064: Easily exploitable RCE flaw in Palo Alto Networks in GlobalProtect VPN
Palo Alto Networks warns of an easy exploitable Remote Code Execution vulnerability in its GlobalProtect VPN product. Palo Alto Networks...
Sophisticated Android spyware PhoneSpy infected thousands of Korean phones
South Korean users have been targeted with a new sophisticated Android spyware, tracked as PhoneSpy, as part of an ongoing...
Streaming wars continue — what about cyberthreats?
Last year became a banner year for the online entertainment industry. Driven by the pandemic lockdown restrictions and imposed work-from-home...
VMware discloses a severe flaw in vCenter Server that has yet to fix
VMware announced it is working on patches for an important severity privilege escalation vulnerability affecting vCenter Server. VMware announced it’s...
A flaw in WP Reset PRO WordPress plugin allows wiping the installation DB
A critical vulnerability in the WP Reset PRO WordPress plugin can allow an authenticated user to wipe the entire database...
Citrix addresses a critical flaw in ADC, Gateway
Citrix addressed two vulnerabilities affecting Citrix ADC, Gateway, and SD-WAN, one of them is a critical issue leading to DoS....
Playstation 5 hacked—twice!
Over the weekend, hackers revealed that the Playstation 5 (PS5), Sony’s latest darling, has been broken into—not just once but twice....
