Security Affairs newsletter Round 293

Pierluigi Paganini December 20, 2020

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

Hacked Subway UK marketing system used in TrickBot phishing campaign
Pay2Key hackers stole data from Intels Habana Labs
PgMiner botnet exploits disputed CVE to hack unsecured PostgreSQL DBs
Security Affairs Newsletter is back!
Details for 1.9M members of Chinese Communist Party Members leaked
Robotic Process Automation vendor UiPath discloses data breach
SolarWinds confirmes 18,000 customers may have been impacted
US Agencies and FireEye were hacked with a supply chain attack on SolarWinds Software
Apple addressed multiple code execution flaws in iOS and iPadOS
Flaws in Medtronic MyCareLink can allow attackers to take over implanted cardiac devices
Norwegian cruise company Hurtigruten was hit by a ransomware
SoReL-20M Sophos & ReversingLabs release 10 million disarmed samples for malware study
EU Digital Services and Digital Markets Acts aim at setting new rules for tech giants
HPE discloses critical zero-day in Systems Insight Manager
Microsoft partnered with security firms to sinkhole the C2 used in SolarWinds hack
PyMICROPSIA Windows malware includes checks for Linux and macOS
Sextortion campaign uses Goontact spyware to target Android and iOS users
5 million WordPress sites potentially impacted by a Contact Form 7 flaw
Digging the recently leaked Chinese Communist Party database
DoppelPaymer ransomware gang now cold-calling victims, FBI warns
Experts spotted browser malicious extensions for Instagram, Facebook and others
FireEye, GoDaddy, and Microsoft created a kill switch for SolarWinds backdoor
Launched OSSISNa, the Observatory for the Protection of the National Strategic Industrial System
All-source intelligence: reshaping an old tool for future challenges
Fake mobile version of Cyberpunk 2077 spreads ransomware
Hackers target COVID-19 vaccine supply chain and sell the vaccine in Darkweb
Microsoft confirms breach in SolarWinds hack, but denies its clients were affected
FBI and Interpol shut down some servers of Jokers Stash carding marketplace
NATO is checking its systems to determine the impact of SolarWinds hack
NSA warns of cloud attacks on authentication mechanisms

If you want to receive the Security Affairs newsletter subscribe it for free here.

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]



you might also like

leave a comment