Security Affairs newsletter Round 292

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

A critical flaw in industrial automation systems opens to remote hackCrooks stole 800,000€ from ATMs in Italy with Black Box attackOperators behind Dark Caracal are still alive and operationalSopra Steria estimates financial Impact of ransomware attack could reach €50 MillionDelaware County, Pennsylvania, opted to pay 500K ransom to DoppelPaymer gangExclusive: Experts from TIMs Red Team Research (RTR) found 6 zero-daysExploring malware to bypass DNA screening and lead to ‘biohacking attacksUniversity of Vermont Medical Center has yet to fully recover from October cyber attackBaltimore County Schools close after a ransomware attackDarkIRC botnet is targeting the critical Oracle WebLogic CVE-2020-14882French pharmaceuticals distribution platform Apodis Pharma leaking 1.7+ TB of confidential dataMalicious npm packages spotted delivering njRAT TrojanTalos reported WebKit flaws in WebKit that allow Remote Code ExecutionUK gov bans new Huawei equipment installs after Sept 2021Vietnam-linked Bismuth APT leverages coin miners to stay under the radarAPT groups targets US Think Tanks, CISA, FBI warnGoogle discloses a zero-click Wi-Fi exploit to hack iPhone devicesK12 education giant paid the ransom to the Ryuk gangMulti-Vector Miner+Tsunami Botnet with SSH Lateral MovementRussia-linked APT Turla used a new malware toolset named CrutchA scan of 4 Million Docker images reveals 51% have critical flawsClop Ransomware gang claims to have stolen 2 million credit cards from E-LandHackers are targeting COVID-19 vaccine cold chainTrickBoot feature allows TrickBot bot to run UEFI attacksEgregor ransomware attack paralyzed for 3 days payment systems at Metro Vancouvers transportation agency TransLinkHackers hide software skimmer in social media sharing iconsHundreds of millions of Android users exposed to hack due to CVE-2020-8913Iranian hackers access unsecured HMI at Israeli Water FacilityIslamic imprisoned hacker Ardit Ferizi ordered to be deportedRecently disclosed CVE-2020-4006 VMware zero-day was reported by NSACyber mercenaries group DeathStalker uses a new backdoorHuman resource consulting giant Randstad hit by Egregor ransomware

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}
Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 292 appeared first on Security Affairs.