Security Affairs newsletter Round 484 by Pierluigi Paganini – INTERNATIONAL EDITION

International Press – Newsletter

Cybercrime  

Personal Data of 3 Billion People Stolen in Hack, Suit Says

Cryptonator founder indicted after platform found handling $235 million in illicit funds  

SharpRhino – New Hunters International RAT identified by Quorum Cyber

French museum network hit by ransomware attack, but no disruptions are reported at Olympic events  

Police recover over USD 40 million from international email scam 

USPS Text Scammers Duped His Wife, So He Hacked Their Operation   

Malware

Surge in Magniber ransomware attacks impact home users worldwide

BlankBot – a new Android banking trojan with screen recording, keylogging and remote control capabilities  

LianSpy: new Android spyware targeting Russian users  

Royal Ransomware Actors Rebrand as “BlackSuit,” FBI and CISA Release Update to Advisory  

New Widespread Extension Trojan Malware Campaign 

Hacking

Bypassing Rockwell Automation Logix Controllers’ Local Chassis Security Protection  

Linux kernel impacted by new SLUBStick cross-cache attack

Bloody Wolf strikes organizations in Kazakhstan with STRRAT commercial malware  

Hacker wipes 13,000 devices after breaching classroom management platform

Government Emails at Risk: Critical Cross-Site Scripting Vulnerability in Roundcube Webmail

0.0.0.0 Day: Exploiting Localhost APIs From the Browser  

BlackHat USA 2024 – Listen-Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap  

‘Sinkclose’ Flaw in Hundreds of Millions of AMD Chips Allows Deep, Virtually Unfixable Infections

E.U. Regulations Made the CrowdStrike Fiasco Much Worse      

Hotel to Search Rooms During DEF CON Hacking Conference  

Intelligence and Information Warfare 

StormBamboo Compromises ISP to Abuse Insecure Software Update Mechanisms

APT41 likely compromised Taiwanese government-affiliated research institute with ShadowPad and Cobalt Strike

North Korean hackers exploit VPN update flaw to install malware

Moscow’s Spies Were Stealing US Tech — Until the FBI Started a Sabotage Campaign

How the FBI Is Hunting North Korean Hackers Who Attacked U.S. Healthcare System 

Stressed Pungsan: DPRK-aligned threat actor leverages npm for initial access       

Exclusive: Russian spies hacked UK government systems earlier this year, stole data and emails 

Cybersecurity

The human body is the next cyber battlefield — and I’m living proof

Elon Musk’s X under pressure from regulators over data harvesting for Grok AI         

How the theft of 40M UK voter register records was entirely preventable  

SonicWall Discovers Second Critical Apache OFBiz Zero-Day Vulnerability

Google Patches New Android Kernel Vulnerability Exploited in the Wild

CrowdStrike trying to use legal threats to suppress criticism and parody of global IT outage

Leaked Documents Show Nvidia Scraping ‘A Human Lifetime’ of Videos Per Day to Train AI  

Industry report says 92% of ICT jobs will be transformed by AI  

Crowdstrike Channel File 291 Incident: Root Cause Analysis is Available  

macOS Sequoia brings better Gatekeeper, stalkerware protections

Cisco warns of critical RCE zero-days in end of life IP phones

Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million  

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)