Security Affairs newsletter Round 324

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the international press subscribe here.

HelloKitty ransomware gang targets vulnerable SonicWall devices
Instagram implements ‘Security Checkup to help users recover compromised accounts
Chinese government issues new vulnerability disclosure regulations
Experts show how to bypass Windows Hello feature to login on Windows 10 PCs
Experts disclose critical flaws in Advantech router monitoring tool
US DoJ indicts four members of China-linked APT40 cyberespionage group
Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco
Pegasus Project – how governments use Pegasus spyware against journalists
Experts disclose critical flaws in Advantech router monitoring tool
WiFiDemon – Recently discovered iPhone Wi-Fi bug could also allow RCE
A 16-year-old bug (CVE-2021-3438) in printer driver affects millions of printers worldwide
Microsoft secured court order to take down domains used in BEC campaign
A bug in Fortinet FortiManager and FortiAnalyzer allows unauthenticated hackers to run code as root
Kelihos botmaster Peter Levashov gets time served
France ANSSI agency warns of APT31 campaign against French organizations
XLoader, a $49 spyware that could target both Windows and macOS devices
LPE flaw in Linux kernel allows attackers to get root privileges on most distros
CISA analyzed stealthy malware found on compromised Pulse Secure devices
Group-IB helps Dutch police identify members of phishing developer gang Fraud Family
Oracle fixes critical RCE vulnerabilities in Weblogic Server
Thousands of Humana customers have their medical data leaked online by threat actors
TicketClub Italy Database Offered in Dark Web
Akamai software update triggered a bug that took offline major sites
Estonian hacker Pavel Tsurkan pleads guilty for operating a proxy botnet.
Kaseya obtained a universal decryptor for REvil ransomware attack
Over 80 US Municipalities Sensitive Information, Including Residents Personal Data, Left Vulnerable in Massive Data Breach
Threat Report Portugal: Q2 2021
What Is An Identity and Access Management So-lution and How Can Businesses Benefit From It?
Japanese computers hit by a wiper malware ahead of 2021 Tokyo Olympics
Obtaining password hashes of Windows systems with PetitPotam attack

If you want to also receive for free the international press subscribe here.

Follow me on Twitter: @securityaffairs and Facebook

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 324 appeared first on Security Affairs.

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Discord

Original Source