Security Affairs newsletter Round 399 by Pierluigi Paganini

December 25, 2022  By Pierluigi Paganini


A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

Expert found Backdoor credentials in ZyXEL LTE3301 M209
Raspberry Robin malware used in attacks against Telecom and Governments
TikTok parent company ByteDance revealed the use of TikTok data to track journalists
BetMGM discloses security breach impacting 1.5 Million customers
An Iranian group hacked Israeli CCTV cameras, defense was aware but didn’t block it
LastPass revealed that encrypted password vaults were stolen
Vice Society ransomware gang is using a custom locker
A new Zerobot variant spreads by exploiting Apache flaws
North Korea-linked hackers stole $626 million in virtual assets in 2022
Play ransomware attacks use a new exploit to bypass ProxyNotShell mitigations on Exchange servers
Okta revealed that its private GitHub repositories were hacked this month
Shoemaker Ecco leaks over 60GB of sensitive data for 500+ days
German industrial giant ThyssenKrupp targeted in a new cyberattack
UAC-0142 APT targets Ukraine’s Delta military intelligence program
Russia-linked Gamaredon APT targeted a petroleum refining company in a NATO nation in August
Microsoft shares details for a Gatekeeper Bypass bug in Apple macOS
Malicious PyPI package posed as SentinelOne SDK to serve info-stealing malware
Old vulnerabilities in Cisco products actively exploited in the wild
Experts spotted a variant of the Agenda Ransomware written in Rust
Play ransomware attacks use a new exploit to bypass ProxyNotShell mitigations on Exchange servers
Okta revealed that its private GitHub repositories were hacked this month
Shoemaker Ecco leaks over 60GB of sensitive data for 500+ days
German industrial giant ThyssenKrupp targeted in a new cyberattack
UAC-0142 APT targets Ukraine’s Delta military intelligence program
Russia-linked Gamaredon APT targeted a petroleum refining company in a NATO nation in August
Microsoft shares details for a Gatekeeper Bypass bug in Apple macOS
Malicious PyPI package posed as SentinelOne SDK to serve info-stealing malware
Old vulnerabilities in Cisco products actively exploited in the wild
Experts spotted a variant of the Agenda Ransomware written in Rust
US Gov warns of BEC attacks to hijack shipments of food products
Glupteba botnet is back after Google disrupted it in December 2021
Google announced end-to-end encryption for Gmail web
Fire and rescue service in Victoria, Australia, confirms cyber attack

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]



Pierluigi Paganini
Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.





You might also like





  • Digging the Deep Web: Exploring the dark side of the web

    Digging The Deep Web

  • Center for Cyber Security and International Relations Studies

  • Subscribe Security Affairs Newsletter

    newsletter

  • SecurityAffairs awarded as Best European Cybersecurity Tech Blog at European Cybersecurity Blogger Awards

    EU Sec Bloggers Awards 22


More Story

Microsoft fined €60 million in France for using advertising cookies without consent

 France's privacy watchdog fines €60 million Microsoft for using advertising cookies without explicit customer consent. France's...