Security Affairs newsletter Round 294

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

A massive fraud operation used mobile device emulators to steal millions from online bank accounts
SolarWinds hackers also breached the US NNSA nuclear agency
Clop ransomware gang paralyzed flavor and fragrance producer Symrise
Dell Wyse ThinOS flaws allow hacking think clients
SUPERNOVA, a backdoor found while investigating SolarWinds hack
Zero-day exploit used to hack iPhones of Al Jazeera employees
Bulletproof VPN services took down in a global police operation
Researchers shared the lists of victims of SolarWinds hack
VMware and Cisco also impacted by the SolarWinds hack
Cellebrite claims to be able to access Signal messages
Research: nearly all of your messaging apps are secure
Google reported that Microsoft failed to fix a Windows zero-day flaw
Millions of devices could be hacked exploiting flaws targeted by tools stolen from FireEye
CrowdStrike releases free Azure tool to review assigned privileges
DDoS amplify attack targets Citrix Application Delivery Controllers (ADC)
North Korea-linked Lazarus APT targets the COVID-19 research
The Russian cryptocurrency exchange Livecoin hacked on Christmas Eve
GoDaddy apologized for insensitive phishing email sent to its employees offering a fake bonus
REvil gang threatens to release intimate pictures of celebs who are customers of The Hospital Group
The Emotet botnet is back and hits 100K recipients per day

If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 294 appeared first on Security Affairs.

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source