Security Affairs newsletter Round 382

September 3, 2022  By Pierluigi Paganini


A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

Google rolled out emergency fixes to address actively exploited Chrome zero-day
Samsung discloses a second data breach this year
The Prynt Stealer malware contains a secret backdoor. Crooks steal data from other cybercriminals
Another Ransomware For Linux Likely In Development
Experts link Raspberry Robin Malware to Evil Corp cybercrime gang
Google Chrome issue allows overwriting the clipboard content
Attack infrastructure used in Cisco hack linked to Evil Corp affiliate
Researchers analyzed a new JavaScript skimmer used by Magecart threat actors
Ragnar Locker ransomware gang claims to have stolen data from TAP Air Portugal
1,859 Android and iOS apps were containing hard-coded Amazon AWS credentials
FBI is helping Montenegro in investigating the ongoing cyberattack
Apple released patches for recently disclosed WebKit zero-day in older iPhones and iPads
A flaw in TikTok Android app could have allowed the hijacking of users’ accounts
Threat actors breached the network of the Italian oil company ENI
GO#WEBBFUSCATOR campaign hides malware in NASA’s James Webb Space Telescope image
Experts spotted five malicious Google Chrome extensions used by 1.4M users
China-linked APT40 used ScanBox Framework in a long-running espionage campaign
Russian streaming platform Start discloses a data breach impacting 7.5M users
A new Google bug bounty program now covers Open Source projects
Three campaigns delivering multiple malware, including ModernLoader and XMRig miner
A study on malicious plugins in WordPress Marketplaces
World’s largest distributors of books Baker & Taylor hit by ransomware
Crooks are increasingly targeting DeFi platforms to steal cryptocurrency
US FTC sued US data broker Kochava for selling sensitive and geolocation data
Twilio breach let attackers access Authy two-factor accounts of 93 users
Nitrokod crypto miner infected systems across 11 countries since 2019
CISA adds 10 new flaws to its Known Exploited Vulnerabilities Catalog
Scammers used a deepfake AI hologram of Binance executive to scam crypto projects
COVID-19 data put for sale on Dark Web
Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit
Experts warn of the first known phishing attack against PyPI
New Agenda Ransomware appears in the threat landscape

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]



Pierluigi Paganini
Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.





You might also like





  • Digging the Deep Web: Exploring the dark side of the web

    Digging The Deep Web

  • Center for Cyber Security and International Relations Studies

  • Subscribe Security Affairs Newsletter

    newsletter

  • SecurityAffairs awarded as Best European Cybersecurity Tech Blog at European Cybersecurity Blogger Awards

    EU Sec Bloggers Awards 22


More Story

Google rolled out emergency fixes to address actively exploited Chrome zero-day

 Google rolled out emergency fixes to address a vulnerability in the Chrome web browser that is being actively exploited...