A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
| Multiple DDoS botnets were observed targeting Zyxel devices |
| CISA warns of attacks against Citrix NetScaler ADC and Gateway Devices |
| Experts believe North Korea behind JumpCloud supply chain attack |
| Nice Suzuki, sport: shame dealer left your data up for grabs |
| Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group |
| ALPHV/BlackCat and Clop gangs claim to have hacked cosmetics giant Estée Lauder |
| P2PInfect, a Rusty P2P worm targets Redis Servers on Linux and Windows systems |
| Adobe out-of-band update addresses an actively exploited ColdFusion zero-day |
| Ukraine’s cyber police dismantled a massive bot farm spreading propaganda US Gov adds surveillance firms Cytrox and Intellexa to Entity List for trafficking in cyber exploits |
| Citrix warns of actively exploited zero-day in ADC and Gateway |
| FIA World Endurance Championship driver passports leaked |
| Virustotal data leak exposed data of some registered customers, including intelligence members |
| FIN8 Group spotted delivering the BlackCat Ransomware |
| Hacking campaign targets sites using WordPress WooCommerce Payments Plugin |
| JumpCloud revealed it was hit by a sophisticated attack by a nation-state actor |
| Adobe warns customers of a critical ColdFusion RCE exploited in attacks |
| Admins of Genesis Market marketplace sold their infrastructure on a hacker forum |
| Cisco fixed a critical flaw in SD-WAN vManage Pompompurin, the BreachForums owner, pleads guilty to hacking charges and possession of child pornography |
| WormGPT, the generative AI tool to launch sophisticated BEC attacks |
Cybercrime
WormGPT – The Generative AI Tool Cybercriminals Are Using to Launch Business Email Compromise Attacks
FIN8 Group Using Modified Sardonic Backdoor for BlackCat Ransomware Attacks
LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack
Nigerian Man Sentenced to 8 Years in US Prison for $8 Million BEC Scheme
Internet Organised Crime Threat Assessment (IOCTA) 2023
Malware
P2PInfect: The Rusty Peer-to-Peer Self-Replicating Worm
Lookout Attributes Advanced Android Surveillanceware to Chinese Espionage Group APT41
DDoS Botnets Target Zyxel Vulnerability CVE-2023-28771
BYOS – BUNDLE YOUR OWN STEALER
Hacking
Massive Targeted Exploit Campaign Against WooCommerce Payments Underway
Finding and exploiting process killer drivers with LOL for 3000$
Zero-Day Attacks Exploited Critical Vulnerability in Citrix ADC and Gateway
Bad.Build: A Critical Privilege Escalation Design Flaw in Google Cloud Build Enables a Supply Chain Attack
JumpCloud Intrusion | Attacker Infrastructure Links Compromise to North Korean APT Activity
Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells
Intelligence and Information Warfare
[Security Update] JumpCloud Incident Details
Commerce Adds Four Entities to Entity List for Trafficking in Cyber Exploits
Cyber police exposed organizers of bot farms that spread hostile propaganda and engaged in Internet fraud
Cybersecurity
Lowering the Bar(d)? Check Point Research’s security analysis spurs concerns over Google Bard’s limitations
Quantum-Safe Cryptography: A Call for National Action
Data leak reveals customers of the Google security platform VirusTotal
Kevin Mitnick, Hacker Who Once Eluded Authorities, Is Dead at 59
Nice Suzuki, sport: shame dealer left your data up for grabs
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – hacking, newsletter)
The post Security Affairs newsletter Round 429 by Pierluigi Paganini – International edition appeared first on Security Affairs.