Security Affairs newsletter Round 480 by Pierluigi Paganini – INTERNATIONAL EDITION
July 14, 2024
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
International Press – Newsletter
Cybercrime
Home Routing is limiting law enforcement evidence gathering, warns Europol
Huione Guarantee: The multi-billion dollar marketplace used by online scammers
CRYSTALRAY: Inside the Operations of a Rising Threat Actor Exploiting OSS Tools
Smoked Out: Uncovering the Life & Personality of a SmokeLoader Actor Targeted by Operation Endgame
Smishing Triad Is Targeting India To Steal Personal And Payment Data At Scale
Crooks Steal Phone, SMS Records for Nearly All AT&T Customers
Rite Aid breached (again) according to new ransomware claim
Hacker ‘Tank’ gets prison sentence for connections to Zeus and IcedID malware
Malware
New Android Spyware Steals Data from Gamers and TikTok Users
Mekotio Banking Trojan Threatens Financial Systems in Latin America
Turning Jenkins Into a Cryptomining Machine From an Attacker’s Perspective
Patch or Peril: A Veeam vulnerability incident
New Malware Campaign Targeting Spanish Language Victims
DarkGate: Dancing the Samba With Alluring Excel Files
Hacking
Attackers Exploiting Remote Code Execution Vulnerability in Ghostscript
RockYou2024: 10 billion passwords leaked in the largest compilation of all time
New OpenSSH Vulnerability Discovered: Potential Remote Code Execution Risk
Blast-RADIUS Attack in More Detail
Introducing a New Vulnerability Class: False File Immutability
Vulnerability in Exim MTA Could Allow Malicious Email Attachments Past Filters
AT&T says criminals stole phone records of ‘nearly all’ customers in new data breach
Intelligence and Information Warfare
Signals intelligence has become a cyber-activity
Russian-linked cybercampaigns put a bull’s-eye on France. Their focus? The Olympics and elections
The Invisible War: How OSINT Shapes the Battle for Ukraine
Emboldened and Evolving: A Snapshot of Cyber Threats Facing NATO
People’s Republic of China (PRC) Ministry of State Security APT40 Tradecraft in Action
State-Sponsored Russian Media Leverages Meliorator Software for Foreign Malign Influence Activity
Comprehensive Threat Intelligence Report: APT Groups Targeting Universities in the EU and US
Two Australian citizens charged with an espionage-related offence
Cybersecurity
VPN service apps Proton, Nord, Red Shield and Le VPN removed from Russian AppStore
Chinese self-driving cars have quietly traveled 1.8 million miles on U.S. roads, collecting detailed data with cameras and lasers
Shopify denies it was hacked, links stolen data to third-party app
The July 2024 Security Update Review
Can AI be Meaningfully Regulated, or is Regulation a Deceitful Fudge?
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – hacking, newsletter)