Security Affairs newsletter Round 140 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Once again thank you!

·      Halloware Ransomware, a new malware offered for sale on the Dark Web for Only $40
·      PayPal-owned company TIO Networks data breach affects 1.6 million customers
·      Security Affairs newsletter Round 139 – News of the week
·      UK National Cyber Security Centre (NCSC)s letter warns against software made in hostile states, specifically Russia
·      Exclusive, CSE CybSec ZLAB Malware Analysis Report: The Italian Job – Android malware masqueraded as Fake Tre Updater
·      Experts discovered a new variant of Shadow BTCware Ransomware Variant
·      Global operation allowed law enforcement agencies to take down the Andromeda Botnet
·      Google Unwanted Software Policy – Its a fight against snooping apps
·      RSA Authentication SDK affected by two critical vulnerabilities, patch it now!
·      17 models of WAGO PFC200 PLC Vulnerable to Unauthenticated Remote Access Exploit
·      DJI drones may be sending data about U.S. critical infrastructure and law enforcement to China
·      German Government prepares Law for backdoors and hacking back
·      Hacked password service Leakbase shuts down, someone suspects it was associated to the Hansa seizure
·      31 Million of client records belonging to the virtual keyboard app AI.type leaked online
·      MailSploit vulnerabilities allow email spoofing with more than 30 email clients
·      TeamViewer fixes a flaw that allows users sharing a desktop session to gain control of the others PC
·      The StorageCrypt ransomware is the last malware in order of time exploiting SambaCry to target NAS Devices
·      HBO hacker linked to the Iranian Charming Kitten APT group
·      Introducing ProtonMail Bridge, email encryption for Outlook, Thunderbird, and Apple Mail
·      Major Banking Applications were found vulnerable to MiTM attacks over SSL
·      NiceHash Hacked – Crooks have allegedly stolen $60m worth of Bitcoin
·      NiceHash: security breach leads to 60 million lost – Iceman is behind?
·      Process Doppelgänging Attack allows evading most security software on all Windows Versions
·      Thousands of WordPress sites infected with a Keylogger and cryptocurrency miner scripts
·      #OpUSA – OpIsrael – Anonymous hit Israel and threatens cyberattack on US Govt
·      CVE-2017-11937 | Microsoft releases an emergency update to fix a flaw in Malware Protection Engine
·      Expert discovered a Keylogger component in HP notebook keyboard driver
·      OpenSSL patches for the fourth time in 2017 its library, and it will likely be the last one 
·      The Indian Intelligence warns China is spying through 42 mobile apps
·      Android Janus vulnerability allows attackers to inject Malware into legitimate apps avoiding detection
·      Linux.ProxyM IoT Botnet now used to launch hacking attacks against websites
·      The authors of the Orcus RAT target Bitcoin investors

Pierluigi Paganini

(Security Affairs – Newsletter)



The post Security Affairs newsletter Round 140 – News of the week appeared first on Security Affairs.



Leave a Reply