Security Affairs newsletter Round 504 by Pierluigi Paganini – INTERNATIONAL EDITION
December 29, 2024
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
International Press – Newsletter
Cybercrime
Phishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces
Pittsburgh Regional Transit attributes recent service disruptions to ransomware attack
Brazilian Man Charged With Making Extortionate Threats To Publicize Stolen Data Obtained By Unlawful Computer Intrusion
Malware
Now You See Me, Now You Don’t: Using LLMs to Obfuscate Malicious JavaScript
Analyzing Malicious Intent in Python Code: A Case Study
DigiEver Fix That IoT Thing!
Hacking
The Insecure IoT Cloud Strikes Again: RCE on Ruijie Cloud-Connected Devices
Cybersecurity firm’s Chrome extension hijacked to steal users’ data
Japan Airlines was hit by a cyberattack, delaying flights during the year-end holiday season
Hackers exploit DoS flaw to disable Palo Alto Networks firewalls
Intelligence and Information Warfare
Ukraine’s state registers hit with one of Russia’s largest cyberattacks, officials say
Lazarus group evolves its infection chain with old and new malware
FBI, DC3, and NPA Identification of North Korean Cyber Actors, Tracked as TraderTraitor, Responsible for Theft of $308 Million USD from Bitcoin.DMM.com
BellaCPP: Discovering a new BellaCiao variant written in C++
OtterCookie, a new malware used by Contagious Interview
Recent Cases of Watering Hole Attacks, Part 2
Cybersecurity
U.S. Judge Rules Against NSO Group in WhatsApp Pegasus Spyware Case
Italy fines OpenAI over ChatGPT privacy rules breach
Adobe Patches ColdFusion Flaw at High Risk of Exploitation
The Intersection of AI and OSINT: Advanced Threats On The Horizon
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
Pierluigi Paganini
(SecurityAffairs – hacking, newsletter)