Your hacker Blog

Security Affairs newsletter Round 250

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

Microsoft announces the launch of a bug bounty program for Xbox
Microsoft warns TA505 changed tactic in an ongoing
malware campaign

Russias watchdog Roskomnadzor threatens to fine Twitter
and Facebook

The Russian Government blocked ProtonMail and
ProtonVPN

Apollon Darknet market is allegedly pulling an exit
scam

Attackers are hacking NSC Linear eMerge E3 building
access systems to launch DDoS attacks

Police are warning crooks are using cleaners to
compromise businesses

Ransomware brought down services of popular TV
search engine TVEyes

Sudo CVE-2019-18634 flaw allows Non-Privileged Linux
and macOS Users run commands as Root

Facebook fixed a WhatsApp bug that allowed hackers
to access local file system

Hackers abused Twitter API to match usernames to
phone numbers

NCA arrested six men in UK over Malta Bank
Cyber-Heist

The city of Racine was offline following a
ransomware attack

Toll Group shuts down some online systems after
ransomware attack

Using 99 mobile phones to create a fake traffic jam
in Google Maps

Dropbox paid more than $1 Million via its bug bounty
program

Expert released PoC exploit code for unpatched
backdoor in HiSilicon chips

Google mistakenly shared private videos of some users
with others in 2019

Hackers abuse BitBucket to infect 500K+ hosts with
arsenal of malware

Microsoft detects 77,000 active web shells on a
daily basis

cdpwn – Millions of devices at risk due to flaws in
implementations of Cisco Discovery Protocol (CDP)

Hacking Wi-Fi networks by exploiting a flaw in
Philips Smart Light Bulbs

Critical Android Bluetooth flaw CVE-2020-0022 could
be exploited without user interaction

Iran-linked APT group Charming Kitten targets
journalists, political and human rights activists

Japanese defense contractors Pasco and Kobe Steel
disclose security breaches

Facebooks official Twitter and Instagram accounts
hacked by OurMine

Group-IB detects Half a Million Indian Banks Cards
on Jokers Stash Cardshop

IoT devices at major Manufacturers infected with
crypto-miner

RobbinHood ransomware exploit GIGABYTE driver flaw
to kill security software

window._mNHandle = window._mNHandle || {};
window._mNHandle.queue = window._mNHandle.queue || [];
medianet_versionId = “3121199”;

try {
window._mNHandle.queue.push(function () {
window._mNDetails.loadTag(“762221962”, “300×250”, “762221962”);
});
}
catch (error) {}

Pierluigi Paganini

(SecurityAffairs – newsletter)

The post Security Affairs newsletter Round 250 appeared first on Security Affairs.