A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
| Now Abyss Locker also targets VMware ESXi servers |
| Russian APT BlueBravo targets diplomatic entities with GraphicalProton backdoor |
| CoinsPaid blames North Korea-linked APT Lazarus for theft of $37M worth of cryptocurrency |
| Monitor Insider Threats but Build Trust First |
| Zimbra fixed actively exploited zero-day CVE-2023-38750 in ZCS |
| DepositFiles exposed config file, jeopardizing user security |
| GROUP-IB Co-Founder ILYA SACHKOV SENTENCED TO 14 YEARS IN A STRICT PRISON COLONY |
| Two flaws in Linux Ubuntu affect 40% of Ubuntu users |
| Two ambulance services in UK lost access to patient records after a cyber attack on software provider FraudGPT, a new malicious generative AI tool appears in the threat landscape |
| CISA adds Ivanti EPMM flaw to its Known Exploited Vulnerabilities catalog |
| Over 500K MikroTik RouterOS systems potentially exposed to hacking due to critical flaw |
| Atlassian addressed 3 flaws in Confluence and Bamboo products |
| VMware addressed an information disclosure flaw in VMware Tanzu Application Service for VMs and Isolation Segment |
| Apple addressed a new actively exploited zero-day tracked as CVE-2023-38606 |
| Twelve Norwegian ministries were hacked using a zero-day vulnerability |
| A flaw in OpenSSH forwarded ssh-agent allows remote code execution |
| Apple could opt to stop iMessage and FaceTime services due to the government’s surveillance demands |
Cybercrime
The shadow of Moscow extends over Brazil: from the scandal over the shelter of the Russian spy, to cyber-espionage and the sale of oil
First Known Targeted OSS Supply Chain Attacks Against the Banking Sector
FraudGPT: The Villain Avatar of ChatGPT
Ambulance patient records system hauled offline for cyber-attack probe
ALPHV ransomware adds data leak API in new extortion strategy
Healthcare files of 8M-plus people fall into hands of Clop via MOVEit mega-bug
Lazarus hackers linked to $60 million Alphapo cryptocurrency heist
Malware
Who and What is Behind the Malware Proxy Service SocksEscort?
Into the tank with Nitrogen
Conti and Akira: Chained Together
Linux version of Abyss Locker ransomware targets VMware ESXi servers
Sneaky XWorm Uses MultiStaged Attack
Related CherryBlos and FakeTrade Android Malware Involved in Scam Campaigns
CISA Releases Malware Analysis Reports on Barracuda Backdoors
Hacking
Norwegian Ministries exposed to computer attacks
A flaw in #OpenSSH forwarded ssh-agent allows remote code execution
Apple Rolls Out Urgent Patches for Zero-Day Flaws Impacting iPhones, iPads and Macs
CVE-2023-38408: Remote Code Execution in OpenSSH’s forwarded ssh-agent
Exploiting MikroTik RouterOS Hardware with CVE-2023-30799
GameOver(lay): Easy-to-exploit local privilege escalation vulnerabilities in Ubuntu Linux affect 40% of Ubuntu cloud workloads
TETRA radio comms used by emergency heroes easily cracked, say experts
Intelligence and Information Warfare
CoinsPaid is back to processing after being hit by a hacker attack. Client funds were not affected and are fully available
Moldova to kick out Russian diplomats over espionage allegations
BlueBravo Adapts to Target Diplomatic Entities with GraphicalProton Malware
Cybersecurity
Apple slams UK surveillance-bill proposals
Think tank calls for monitoring of Chinese AI-enabled products
Cyber Command, NSA pick advances to Senate floor, but path to confirmation remains blocked
US Senator Wyden Accuses Microsoft of ‘Cybersecurity Negligence’
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – hacking, newsletter)
The post Security Affairs newsletter Round 430 by Pierluigi Paganini – International edition appeared first on Security Affairs.