Security Affairs newsletter Round 170 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal

20% discount

Kindle Edition

Paper Copy

Digging The Deep Web

Once again thank you!

·      Data Broker Exactis data breach, one of the biggest ever, exposes millions of Americans
·      Security issues in the LTE standard expose billions on mobile users to attacks
·      Zerodium offers up to $500,000 for Linux Zero-Day exploits
·      A sample of CryptoCurrency Clipboard Hijackers monitors 2.3 Million Bitcoin addresses
·      NSA began deleting all call detail records (CDRs) acquired since 2015
·      RIG Exploit Kit operators leverage PROPagate Injection Technique to deliver Miner
·      Trezor users targeted by phishing attacks, experts blame DNS Poisoning or BGP Hijacking
·      A Samsung Texting App bug is sending random photos to contacts
·      Facebook is notifying 800,000 users affected by a blocking bug
·      Iranian Charming Kitten ATP group poses as Israeli cybersecurity firm in phishing campaign
·      Microsoft revealed that 2 Zero-Days found in March were part of a cyber weapon in an early development stage
·      Rowhammer Evolves into RAMpage Exploit, Targeting Android Phones Since 2012
·      The Social network giant Facebook confirms it shared data with 61 tech firms after 2015
·      Adware already infected at least 78000 Fortnite Players
·      Huawei enterprise and broadcast products have a crypto bug. Fix it now!
·      Siemens warns of several flaws affecting Central Plant Clocks
·      The GandCrab ransomware V4 appears in the threat landscape
·      Crooks leverage obfuscated Coinhive shortlink in a large crypto-mining operation
·      New Smoke Loader campaign aims at stealing multiple credentials from many applications
·      Thunderbird Version 52.9 addresses several issues, including the EFAIL flaw
·      Why Banning Risks to Cybersecurity Doesnt Actually Improve Cybersecurity
·      Chinese hackers breached into systems at Australian National University … and are still there
·      Google July 2018 Android patches fixes critical vulnerabilities
·      Hamas cyber-operatives lure Israeli soldiers to spyware hidden in tainted apps
·      NSO Group ex-employee arrested for attempting to sell phone Hacking Tool For $50 Million
·      Critical flaws patched in ISP Advanced Digital Broadcast Broadband devices
·      New Rakhni variant could infect systems with either a ransomware or a miner

 



Pierluigi Paganini

(Security Affairs – Newsletter)


The post Security Affairs newsletter Round 170 – News of the week appeared first on Security Affairs.



Leave a Reply