Security Affairs newsletter Round 480 by Pierluigi Paganini – INTERNATIONAL EDITION

International Press – Newsletter

Cybercrime  

Home Routing is limiting law enforcement evidence gathering, warns Europol    

Huione Guarantee: The multi-billion dollar marketplace used by online scammers   

CRYSTALRAY: Inside the Operations of a Rising Threat Actor Exploiting OSS Tools  

Smoked Out: Uncovering the Life & Personality of a SmokeLoader Actor Targeted by Operation Endgame

Smishing Triad Is Targeting India To Steal Personal And Payment Data At Scale  

Crooks Steal Phone, SMS Records for Nearly All AT&T Customers           

Rite Aid breached (again) according to new ransomware claim

Hacker ‘Tank’ gets prison sentence for connections to Zeus and IcedID malware        

Malware

New Android Spyware Steals Data from Gamers and TikTok Users  

Mekotio Banking Trojan Threatens Financial Systems in Latin America  

Turning Jenkins Into a Cryptomining Machine From an Attacker’s Perspective

Patch or Peril: A Veeam vulnerability incident

New Malware Campaign Targeting Spanish Language Victims

DarkGate: Dancing the Samba With Alluring Excel Files   

Hacking

Attackers Exploiting Remote Code Execution Vulnerability in Ghostscript  

RockYou2024: 10 billion passwords leaked in the largest compilation of all time

New OpenSSH Vulnerability Discovered: Potential Remote Code Execution Risk

Blast-RADIUS Attack in More Detail 

Introducing a New Vulnerability Class: False File Immutability     

Vulnerability in Exim MTA Could Allow Malicious Email Attachments Past Filters  

AT&T says criminals stole phone records of ‘nearly all’ customers in new data breach  

Intelligence and Information Warfare 

Signals intelligence has become a cyber-activity  

Russian-linked cybercampaigns put a bull’s-eye on France. Their focus? The Olympics and elections

The Invisible War: How OSINT Shapes the Battle for Ukraine      

Emboldened and Evolving: A Snapshot of Cyber Threats Facing NATO  

People’s Republic of China (PRC) Ministry of State Security APT40 Tradecraft in Action  

State-Sponsored Russian Media Leverages Meliorator Software for Foreign Malign Influence Activity

Comprehensive Threat Intelligence Report: APT Groups Targeting Universities in the EU and US    

Two Australian citizens charged with an espionage-related offence  

Cybersecurity  

VPN service apps Proton, Nord, Red Shield and Le VPN removed from Russian AppStore  

Chinese self-driving cars have quietly traveled 1.8 million miles on U.S. roads, collecting detailed data with cameras and lasers 

Shopify denies it was hacked, links stolen data to third-party app

The July 2024 Security Update Review  

Can AI be Meaningfully Regulated, or is Regulation a Deceitful Fudge?   

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)