Security Affairs newsletter Round 302

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the international press subscribe here.

PayPal addresses reflected XSS bug in user wallet currency converterThe kingpin behind Jokers Stash retires with a billionaire exitFrance agency ANSSI links Russias Sandworm APT to attacks on hosting providersFrench and Ukrainian police arrested Egregor ransomware affiliates/partners in UkraineThe malicious code in SolarWinds attack was the work of 1,000+ developersVMware fixes command injection issue in vSphere ReplicationA new Bluetooth overlay skimmer block chip-based transactionsHackers abusing the Ngrok platform phishing attacksPopular SHAREit app is affected by severe flaws yet to be fixedTelegram flaw could have allowed access to users secret chatsCentreon says that recently disclosed campaigns only targeted obsolete versions of its open-source softwareLatin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malwareScamClub malvertising gang abused WebKit zero-day to redirect to online gift card scamsUS DoJ charges three members of the North Korea-linked Lazarus APT groupCredential stuffing attack hit RIPE NCC: Members have to enable 2FASolarWinds hackers had access to components used by Azure, Intune, and ExchangeThe OpenSSL Project addressed three vulnerabilitiesWatchDog botnet targets Windows and Linux servers in cryptomining campaignExperts spotted the first malware tailored for Apple M1 Chip, it is just the beginningHackers steal credit card data abusing Googles Apps ScriptNew Masslogger Trojan variant exfiltrates user credentialsPrivacy bug in the Brave browser exposes Tor addresses to users DNS providerSequoia Capital Venture Capital firm discloses a data breachSilver Sparrow, a new malware infects Mac systems using Apple M1 chipSonicWall releases second firmware updates for SMA 100 vulnerabilityIf you want to receive the weekly Security Affairs Newsletter for free subscribe here.

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}
Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 302 appeared first on Security Affairs.