Security Affairs newsletter Round 129 – News of the week

Pierluigi Paganini September 24, 2017

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Once again thank you!

·      400,000 UK consumers at risk after the Equifax data breach
·      Chrome will label Resources delivered via FTP as Not Secure
·      MAGENTO 2.0.16 and 2.1.9 security update fixes critical flaw in the platform
·      Security Affairs newsletter Round 128 – News of the week
·      US Treasury announced sanctions against seven Iranian nationals and other entities
·      CCleaner supply chain compromised to distribute malware
·      CSE CybSec ZLAB Malware Analysis Report: NotPetya
·      Malware attacks leverage the Hangul Word Processor and PostScript to spread malware
·      The hacker KuroiSH defaced the official Google Brazil domain
·      Hackers exploit an undocumented Word feature for user fingerprinting
·      New Android Banking Trojan Red Alert 2.0 available for sale on crime forums
·      Researchers demonstrate how to steal Bitcoin by exploiting SS7 issues
·      Was Torrent Site The Pirate Bay Being Sneaky or Creative By Tricking Visitors Into Monero Mining
·      Wikileaks Spy File Russia – the surveillance apparatus implemented by firm Peter-Service
·      aIR-Jumper – A malware exfiltrates data via security cameras and infrared
·      Optionsbleed vulnerability can cause Apache servers to leak memory data
·      Viacom left the keys of its digital kingdom on a publicly exposed AWS S3 bucket
·      Experts spotted a login page flaw in Joomla that exposes admin credentials
·      FedEx announces $300m in lost business and response costs after NotPetya attack
·      H1 2017 – Twitter suspended a total of 935,897 accounts for the promotion of terrorism
·      Iranian cyber spies APT33 target aerospace and energy organizations
·      ISPs in at least two countries were involved in delivering surveillance FinFisher Spyware
·      CCleaner hackers targeted tech giants with a second-stage malware
·      Crooks using Linux.ProxyM IoT botnet to send spam messages
·      New Verizon data leak, the second one in a few months
·      SEC announces it was hacked, information may have been used for insider trading
·      CSE CybSec ZLAB Malware Analysis Report: Petya
·      Google released a Chrome 61 update that patches 2 High-Risk Flaws
·      Retefe banking Trojan leverages EternalBlue exploit to infect Swiss users

[adrotate banner=”9″]

[adrotate banner=”5″]

Pierluigi Paganini

(Security Affairs – Newsletter)

[adrotate banner=”13″]



you might also like

leave a comment