Security Affairs newsletter Round 149 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Once again thank you!

·      GandCrab, a new ransomware-as-a-service emerges from Russian crime underground
·      More than 1 million worth of ETH stolen from Bee Token ICO Participants with phishing emails
·      Security Affairs newsletter Round 148 – News of the week
·      UK Government Advices Industry Sectors To Comply With Guidance Or Pay $17 Million Fine
·      Almost all WordPress websites could be taken down due to unpatched CVE-2018-6389 DoS flaw
·      Cisco and FireEye Pointing Finger at North Korea Hacking Group For Adobe Flash 0-Day In The Wild
·      Cybersecurity week Round-Up (2018, Week 5)
·      Hacking Amazon Key – Hacker shows how to access a locked door after the delivery
·      Leaked memo suggest NSA and US Army compromised Tor, I2P, VPNs and want to unmask Monero users
·      Abusing X.509 Digital Certificates to establish a covert data exchange channel
·      ADB.Miner, the Android mining botnet that targets devices with ADB interface open
·      Crime ring linked to Luminosity RAT dismantled by an international law enforcement operation
·      Popular British hacktivist Lauri Love will not be extradited to US, UK Court Ruled
·      9 Tips to Prevent WordPress Hacks in this Dangerous Digital World
·      Adobe rolled out an emergency patch that fixed CVE-2018-4878 flaw exploited by North Korea
·      Automated Hacking Tool Autosploit Cause Concerns Over Mass Exploitation
·      Hackers can remotely access adult sex toys compromising at least 50.000 users
·      Researchers ported the NSA  EternalSynergy, EternalRomance, and EternalChampion to Metasploit
·      For the second time CISCO issues security patch to fix a critical vulnerability in CISCO ASA
·      Intel releases new Spectre security updates, currently only for Skylake chips
·      Joomla 3.8.4 release addresses three XSS and SQL Injection vulnerabilities
·      Meet PinME, A Brand New Attack To Track Smartphones With GPS Turned Off.
·      US authorities dismantled the global cyber theft ring known as Infraud Organization
·      A Flaw in Hotspot Shield VPN From AnchorFree Can Expose Users Locations
·      fail0verflow hackers found an unpatchable flaw in Nintendo Switch bootROM and runs Linux OS
·      Researcher found multiple vulnerabilities in NETGEAR Routers, update them now!
·      Swisscom data breach Hits 800,000 Customers, 10% of Swiss population
·      The source code of the Apple iOS iBoot Bootloader leaked online
·      UDPOS PoS malware exfiltrates credit card data DNS queries
·      Lenovo patches critical flaws that affect Broadcoms chipsets in dozens of Lenovo ThinkPad
·      Online Auction Safety Tips for Buyers and Sellers
·      VMware releases temporary mitigations for Meltdown and Spectre flaws

Pierluigi Paganini

(Security Affairs – Newsletter)



The post Security Affairs newsletter Round 149 – News of the week appeared first on Security Affairs.



Leave a Reply