Security Affairs newsletter Round 316

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

A malware attack hit the Alaska Health Department
CVE-2021-31166 Windows HTTP flaw also impacts WinRM servers
Zeppelin ransomware gang is back after a temporary pause
13 flaws in Nagios IT Monitoring Software pose serious risk to orgs
Anker fixed an issue that caused access to Eufy video camera feeds to random users
French intel found flaws in Bluetooth Core and Mesh specs
US banks are giving facial recognition a go; EU tightens regulations, FTC updates AI guidelines
Audio equipment maker Bose Corporation discloses a ransomware attack
Apple addresses three zero-day flaws actively exploited in the wild
CVE-2021-31166 Windows HTTP flaw also impacts WinRM servers
Trend Micro fixes 3 flaws in Home Network Security Devices
Ivanti fixes high severity flaw in Pulse Connect Secure VPN
Agrius group targets Israel with data-wipers disguised as ransomware
Another critical bug impacts all VMware vCenter Server installs
Belgium Interior Ministry said it was hit by a sophisticated cyber attack
Google discovered a new variant of Rowhammer attack dubbed Half-Double
French police seized dark web marketplace Le Monde Parallèle
Nearly 50,000 IPs compromised in Kubernetes clusters by TeamTNT
APT hacked a US municipal government via an unpatched Fortinet VPN
DHS announces security measures for critical pipeline industry
M1RACLES, the unpatchable bug that impacts new Apple M1 chips
Hackers compromised Japanese government offices via Fujitsu ‘s ProjectWEB tool
NASA identified 1,785 cyber incidents in 2020
DHS announces security measures for critical pipeline industry
Canada Post disclosed a ransomware attack on a third-party service provider
China-linked APT groups targets orgs via Pulse Secure VPN devices
CVE-2020-15782 flaw in Siemens PLCs allows remote hack
Microsoft details new sophisticated spear-phishing attacks from NOBELIUM
FBI will share compromised passwords with HIBP Pwned Passwords
Secure Search is a Browser Hijacker – How to Remove it Now?
SonicWall fixes an NSM On-Prem bug, patch it asap!

Follow me on Twitter: @securityaffairs and Facebook

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 316 appeared first on Security Affairs.

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Discord

Original Source