Security Affairs newsletter Round 177 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal

20% discount

Kindle Edition

Paper Copy

Digging The Deep Web

Once again thank you!

·      Chinas Belt and Road project (BRI) is a driver of regional cyber threat activity
·      North Korea-linked Dark Hotel APT leverages CVE-2018-8373 exploit
·      Flaw in SOLEO IP Relay Service potentially exposed over 30 million Canadian records
·      Malware researcher reverse engineered a threat that went undetected for at least 2 years
·      Twitch bug may have exposed some users messages to others
·      Unusual Malspam campaign targets banks with Microsoft Publisher files
·      Anonymous collective brought down Spain sites to support Catalonia
·      Microsoft says Russian hackers continue targeting 2018 midterm elections
·      Security firm released Singularity, an open source DNS Rebinding attack tool
·      A critical remote code execution flaws in Ghostscript could allow to completely take over affected system
·      Adobe security updates address 2 critical code execution flaws in Photoshop
·      Crooks claim to have stolen 20k customer records from Superdrug cosmetics retailer
·      Dark Tequila Banking malware targets Latin America since 2013
·      Expert discovered a Critical Remote Code Execution flaw in Apache Struts (CVE-2018-11776)
·      Bitdefender spotted Triout, a new powerful Android Spyware Framework
·      Latest Turla backdoor leverages email PDF attachments as C&C mechanism
·      North Korea-linked Ryuk Ransomware used in a targeted campaign
·      Operation Red Signature – South Korean Firms victims of a supply chain attack
·      A new Cross-Platform Mirai Variant appeared in the wild
·      Expert found a flaw that affects all OpenSSH versions since 1999
·      North Korea-linked Lazarus APT uses first Mac malware in cryptocurrency exchange attack
·      T-Mobile data breach exposed personal information of up to 2 million customers
·      AdvisorsBot, a previously undocumented downloader involved in malicious email campaigns
·      Australia banned Huawei from 5G network due to security concerns
·      The restaurant chain Cheddars Scratch Kitchen has suffered a payment card breach


Pierluigi Paganini

(Security Affairs – Newsletter)


The post Security Affairs newsletter Round 177 – News of the week appeared first on Security Affairs.



Leave a Reply