Security Affairs newsletter Round 307

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the international press subscribe here.

CISA releases CHIRP, a tool to detect SolarWinds malicious activityMicrosoft Defender can now protect servers against ProxyLogon attacksSwiss expert Till Kottmann indicted for conspiracy, wire fraud, and aggravated identity theftAbusing distance learning software to hack into student PCsAdobe addresses a critical vulnerability in ColdFusion productMinistry of Defence academy hit by state-sponsored hackersRCE flaw in Apache OFBiz could allow to take over the ERP systemWhich is the Threat landscape for the ICS sector in 2020?CISA is warning of vulnerabilities in GE Power Management DevicesEnergy giant Shell discloses data breach caused by Accellion FTA hackGoogle fixes an Android vulnerability actively exploited in the wildSierra Wireless halted production at its manufacturing sites due to ransomware attack92% of worldwide Microsoft Exchange IPs are now patched or mitigatedA day before elections, hackers leaked details of millions of Israeli votersBillions of FBS Records Exposed in Online Trading Broker Data LeakBlack Kingdom ransomware is targeting Microsoft Exchange serversCisco Jabber for Windows, macOS, Android and iOS is affected by a critical issue30 million Americans affected by the Astoria Company data breach62,000 Microsoft Exchange Servers potentially left unpatched, weeks after software bugs were first uncoveredFacebook took action against China-linked APT targeting Uyghur activistsOpenSSL Project released 1.1.1k version to fix two High-severity flawsThe surge of fake COVID-19 test results, vaccines and vaccination certificates on the Dark WebFBI published a flash alert on Mamba Ransomware attacksGerman Parliament Bundestag targeted again by Russia-linked hackersHades ransomware gang targets big organizations in the USSolarwinds Orion Platform updates fix two remote code execution issuesApple released out-of-band updates for a new Zero‑Day actively exploitedClop Ransomware gang now contacts victims customers to force victims into pay a ransomExperts spotted a new advanced Android spyware posing as System UpdateIf you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Follow me on Twitter: @securityaffairs and Facebook

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}
Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 307 appeared first on Security Affairs.