Security Affairs newsletter Round 323

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the international press subscribe here.

Biden discussed Russian ransomware gangs with Putin in a phone call
Hackers accessed Mint Mobile subscribers data and ported some numbers
Magecart hackers hide stolen credit card data into images and bogus CSS files
Kaseya releases patches for flaws exploited in massive ransomware supply-chain attack
BIOPASS malware abuses OBS Studio to spy on victims
SolarWinds fixes critical Serv-U zero-day exploited in the wild
Threat actors scrape 600 million LinkedIn profiles and are selling the data online – again
Adobe patches critical vulnerabilities in Reader, Acrobat, and Illustrator
This couple lost £15,000 to scammers. We followed the money – and found millions in stolen crypto
Social media partially disrupted in Cuba amid anti-government protests
American retailer Guess discloses data breach after ransomware attack
ModiPwn flaw in Modicon PLCs bypasses security mechanisms
China-linked LuminousMoth APT targets entities from Southeast Asia
Google: four zero-day flaws have been exploited in the wild
The infrastructure and websites used by REvil ransomware gang are not reachable
Trickbot improve its VNC module in recent attacks
China-linked hacking group DEV-0322 behind Solarwinds Serv-U zero-day attacks
Exploit broker Zerodium is looking for VMware vCenter Server exploits
HelloKitty ransomware now targets VMware ESXi servers
Israeli surveillance firm Candiru used Windows zero-days to deploy spyware
SpearTip Finds New Diavol Ransomware Does Steal Data
macOS: Bashed Apples of Shlayer and Bundlore
SonicWall warns of ‘imminent ransomware’ attacks on its EOL products
HelloKitty ransomware now targets VMware ESXi servers
SpearTip Finds New Diavol Ransomware Does Steal Data
Exploit broker Zerodium is looking for VMware vCenter Server exploits
Israeli surveillance firm Candiru used Windows zero-days to deploy spyware
Google Chrome 91.0.4472.164 fixes a new zero-day exploited in the wild
Microsoft alerts about a new Windows Print Spooler vulnerability
New enhanced Joker Malware samples appear in the threat landscape
Cisco fixes high-risk DoS flaw in ASA, FTD Software
D-Link issues beta hotfix for multiple flaws in DIR-3040 routers
US govt offers $10 million reward for info on nation-state cyber operations

If you want to also receive for free the international press subscribe here.

Follow me on Twitter: @securityaffairs and Facebook

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 323 appeared first on Security Affairs.

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Discord

Original Source