Security Affairs newsletter Round 323

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the international press subscribe here.

Biden discussed Russian ransomware gangs with Putin in a phone callHackers accessed Mint Mobile subscribers data and ported some numbersMagecart hackers hide stolen credit card data into images and bogus CSS filesKaseya releases patches for flaws exploited in massive ransomware supply-chain attackBIOPASS malware abuses OBS Studio to spy on victimsSolarWinds fixes critical Serv-U zero-day exploited in the wildThreat actors scrape 600 million LinkedIn profiles and are selling the data online – againAdobe patches critical vulnerabilities in Reader, Acrobat, and IllustratorThis couple lost £15,000 to scammers. We followed the money – and found millions in stolen cryptoSocial media partially disrupted in Cuba amid anti-government protestsAmerican retailer Guess discloses data breach after ransomware attackModiPwn flaw in Modicon PLCs bypasses security mechanismsChina-linked LuminousMoth APT targets entities from Southeast AsiaGoogle: four zero-day flaws have been exploited in the wildThe infrastructure and websites used by REvil ransomware gang are not reachableTrickbot improve its VNC module in recent attacksChina-linked hacking group DEV-0322 behind Solarwinds Serv-U zero-day attacksExploit broker Zerodium is looking for VMware vCenter Server exploitsHelloKitty ransomware now targets VMware ESXi serversIsraeli surveillance firm Candiru used Windows zero-days to deploy spywareSpearTip Finds New Diavol Ransomware Does Steal DatamacOS: Bashed Apples of Shlayer and BundloreSonicWall warns of ‘imminent ransomware’ attacks on its EOL productsHelloKitty ransomware now targets VMware ESXi serversSpearTip Finds New Diavol Ransomware Does Steal DataExploit broker Zerodium is looking for VMware vCenter Server exploitsIsraeli surveillance firm Candiru used Windows zero-days to deploy spywareGoogle Chrome 91.0.4472.164 fixes a new zero-day exploited in the wildMicrosoft alerts about a new Windows Print Spooler vulnerabilityNew enhanced Joker Malware samples appear in the threat landscapeCisco fixes high-risk DoS flaw in ASA, FTD SoftwareD-Link issues beta hotfix for multiple flaws in DIR-3040 routersUS govt offers $10 million reward for info on nation-state cyber operations

If you want to also receive for free the international press subscribe here.

Follow me on Twitter: @securityaffairs and Facebook

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}
Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 323 appeared first on Security Affairs.