A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.
If you want to also receive for free the newsletter with the international press subscribe here.
|Raspberry Robin spreads via removable USB devices|
|Malware campaign hides a shellcode into Windows event logs|
|US gov sanctions cryptocurrency mixer Blender also used by North Korea-linked Lazarus APT|
|How the thriving fraud industry within Facebook attacks independent media|
|QNAP fixes multiple flaws, including a QVR RCE vulnerability|
|Anonymous and Ukraine IT Army continue to target Russian entities|
|NetDooka framework distributed via a pay-per-install (PPI) malware service|
|Vulnerable Docker Installations Are A Playhouse for Malware Attacks|
|Ukraine IT Army hit EGAIS portal impacting Russia’s alcohol distribution|
|Google addresses actively exploited Android flaw in the kernel
Cisco addresses three bugs in Enterprise NFVIS Software
|A couple of 10-Year-Old flaws affect Avast and AVG antivirus￼|
|F5 warns its customers of tens of flaws in its products|
|China-linked Winnti APT steals intellectual property from companies worldwide|
|Pro-Ukraine attackers compromise Docker images to launch DDoS attacks on Russian sites|
|Experts linked multiple ransomware strains North Korea-backed APT38 group|
|An expert shows how to stop popular ransomware samples via DLL hijacking|
|China-linked APT Curious Gorge targeted Russian govt agencies|
|A DNS flaw impacts a library used by millions of IoT devices|
|China-linked Moshen Dragon abuses security software to sideload malware
UNC3524 APT uses IP cameras to deploy backdoors and target Exchange
|Package Analysis dynamic analyzes packages in open-source repositories|
|Car rental company Sixt hit by a cyberattack that caused temporary disruptions|
|The mystery behind the samples of the new REvil ransomware operation|
|Group-IB CEO remains in prison – the Russian-led company has been ‘blacklisted’ in Italy|
|IoT and Cybersecurity: What’s the Future?|
|Russia-linked APT29 targets diplomatic and government organizations|
|Synology and QNAP warn of critical Netatalk flaws in some of their products|
|Hackers stole +80M from DeFi platforms Rari Capital and Fei Protocol|
|Apr 24 – Apr 30 Ukraine – Russia the silent cyber conflict|
Please vote for Security Affairs as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS
Vote for me in the sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog” and others of your choice.
To nominate, please visit: https://docs.google.com/forms/d/e/1FAIpQLSfxxrxICiMZ9QM9iiPuMQIC-IoM-NpQMOsFZnJXrBQRYJGCOw/viewform
Follow me on Twitter: @securityaffairs and Facebook
(SecurityAffairs – hacking, newsletter)
The post Security Affairs newsletter Round 364 by Pierluigi Paganini appeared first on Security Affairs.
If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.