Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 496 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Chinese threat actors use Quad7 botnet in password-spray attacks FBI arrested former Disney World employee for hacking computer […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Chinese threat actors use Quad7 botnet in password-spray attacks
FBI arrested former Disney World employee for hacking computer menus and mislabeling allergy info
Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide
PTZOptics cameras zero-days actively exploited in the wild
New LightSpy spyware version targets iPhones with destructive capabilities
LottieFiles confirmed a supply chain attack on Lottie-Player
Threat actor says Interbank refused to pay the ransom after a two-week negotiation
QNAP fixed second zero-day demonstrated at Pwn2Own Ireland 2024
New version of Android malware FakeCall redirects bank calls to scammersRussia-linked Midnight Blizzard APT targeted 100+ organizations with a spear-phishing campaign using RDP files
Google fixed a critical vulnerability in Chrome browser
QNAP fixed NAS backup zero-day demonstrated at Pwn2Own Ireland 2024
International law enforcement operation dismantled RedLine and Meta infostealers
Fog and Akira ransomware attacks exploit SonicWall VPN flaw CVE-2024-40766
Russia-linked espionage group UNC5812 targets Ukraine’s military with malware
France’s second-largest telecoms provider Free suffered a cyber attack
A crime ring compromised Italian state databases reselling stolen info
Third-Party Identities: The Weakest Link in Your Cybersecurity Supply Chain
Black Basta affiliates used Microsoft Teams in recent attacks
Four REvil Ransomware members sentenced for hacking and money laundering

International Press – Newsletter

Cybercrime  

Italy police arrest four over alleged illegal database access, source says   

Free, France’s second-largest telecoms company, confirms being hit by cyberattack  

The Crime Messenger: How Sky ECC Phones Became a Tool of the Criminal Trade  

Attackers Target Crypto Wallets Using Codeless Webflow Phishing Pages

Operation Magnus    

Cryptocurrency Enthusiasts Targeted in Multi-Vector Supply Chain Attack  

Ex-Disney worker accused of hacking computer menus to add profanities, errors   

Malware

EIW — ESET Israel Wiper — used in active attacks targeting Israeli orgs   

ESET Online Scanner for Redline and META  

Massive PSAUX ransomware attack targets 22,000 CyberPanel instances  

LightSpy: Implant for iOS  

Pygmy Goat

Hacking

Protect AI’s October 2024 Vulnerability Report  

An analysis of the Keycloak authentication system   

Anthropic flags AI’s potential to ‘automate sophisticated destructive cyber attacks’ 

Lottie-Player Supply Chain Attack Targets Cryptocurrency Wallets  

Rare Case of Privilege Escalation Patched in LiteSpeed Cache Plugin  

GreyNoise Intelligence Discovers Zero-Day Vulnerabilities in Live Streaming Cameras with the Help of AI   

Intelligence and Information Warfare 

Tenacious Pungsan: A DPRK threat actor linked to Contagious Interview 

Hybrid Russian Espionage and Influence Campaign Aims to Compromise Ukrainian Military Recruits and Deliver Anti-Mobilization Narratives   

Midnight Blizzard conducts large-scale spear-phishing campaign using RDP files 

CloudScout: Evasive Panda scouting cloud services

Hidden Warfare: Iran’s Growing Dependence on Criminal Networks  

New Tradecraft of Iranian Cyber Group Aria Sepehr Ayandehsazan aka Emennet Pasargad

Cybersecurity

Unchaining Blockchain Security Part 1: The Emerging Risks of Private Blockchains in Enterprises    

OT security becoming a mainstream concern  

My Habit Was Collecting  

OpenAI’s new ChatGPT Search Chrome extension feels like a search hijacker

Synology hurries out patches for zero-days exploited at Pwn2Own

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)