Security Affairs newsletter Round 263

Pierluigi Paganini May 10, 2020

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

Please give me your vote for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS
https://docs.google.com/forms/d/e/1FAIpQLSe8AkYMfAAwJ4JZzYRm8GfsJCDON8q83C9_wu5u10sNAt_CcA/viewform

Coronavirus-themed attacks April 26 – May 02, 2020
Cyber Threats Observatory Gets Improvements
Indias Jio Coronavirus symptom checker exposed test results
TOKOPEDIA e-commerce hacked, 91 Million accounts available on the darkweb
DHS CISA alert provides recommendations on securing Office 365 installs
Hackers are scanning the internet for vulnerable Salt installs, Ghost blogging platform hacked
LineageOS servers hacked, attackers exploited unpatched Salt issues
Microsoft spotted multiple malspam campaigns using malware-laced ISO and IMG files
Nation-state actors are targeting UK universities to steal info on COVID-19 research
CAM4 adult cam site leaked 11M database records including emails, private chats
Expert released PoC exploit for CVE-2020-1967 DoS flaw in OpenSSL
GoDaddy discloses a data breach, web hosting account credentials exposed
Kaiji, a new Linux malware targets IoT devices in the wild
Recorded Future to Provide Free Access to Elite Intelligence Through New Browser Extension
9% of SAPs 440,000 customers impacted by security bugs in some cloud products
Data belonging 44 Million Pakistani mobile users leaked online
Law enforcement agencies dismantled Infinity Black hacker group
Shipping Giant Toll suffered a second ransomware attack in a few months
Unacademy hacked, 22 million accounts offered for sale
Brazilian trojan banker is targeting Portuguese users using browser overlay
Issues in Elementor Pro and Ultimate Addons for Elementor exposed 1 Million WordPress sites at risk
Naikon APT is flying under the radar since 2015
Poulight Stealer, a new Comprehensive Stealer from Russia
Samsung fixes a zero-click issue affecting its phones
Snake Ransomware hits Europes largest private hospital operator Fresenius during COVID-19 outbreak
Massive cyber attack forced Ruhr University Bochum (RUB) to shut down its IT infrastructure
Microsoft investigates claims that its GitHub account has been hacked
Phishers turning hard-working: CERT-GIB records upsurge of phishing resource blockages as duration of attacks grows
3.68 Million MobiFriends User details leaked online
North Korea-linked Lazarus APT uses a Mac variant of the Dacls RAT
SilverTerrier gang uses COVID-19 lures in BEC attacks against Healthcare, Government Organizations
Sodinokibi gang hacked law firm of the celebrities and threatens to release the docs
[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – newsletter, hacking)

[adrotate banner=”5″]

[adrotate banner=”13″]



you might also like

leave a comment