Security Affairs newsletter Round 328

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the international press subscribe here.

U.S. State Department was recently hit by a cyber attackNew LockFile ransomware gang uses ProxyShell and PetitPotam exploitsUS CISA releases guidance on how to prevent ransomware data breachesLojas Renner, Brazilian largest clothing store chain, was hit by ransomwareEmsisoft releases free SynAck ransomware decryptorCloudflare mitigated the largest ever volumetric DDoS attack to dateInternet Systems Consortium (ISC) fixes High-Severity DoS flaw in BIND DNS SoftwareMozi P2P Botnet also targets Netgear, Huawei, and ZTE devicesCisco warns of Server Name Identification data exfiltration flaw in multiple products637 flaws in industrial control system (ICS) products were published in H1 2021Threat actors stole $97 million from Liquid cryptocurency exchangeCisco will not patch critical flaw CVE-2021-34730 in EoF routersThreat actors hacked US Census Bureau in 2020 by exploiting a Citrix flawNK-linked InkySquid APT leverages IE exploits in recent attacksNew analysis of Diavol ransomware reinforces the link to TrickBot gangT-Mobile data breach has impacted 48.6 million customersAdobe addresses two critical vulnerabilities in PhotoshopHamburg’s data protection agency (DPA) states that using Zoom violates GDPRKalay cloud platform flaw exposes millions of IoT devices to hackFortinet FortiWeb OS Command Injection allows takeover servers remotely1.9 million+ records from the FBI’s terrorist watchlist available onlineColonial Pipeline discloses data breach after May ransomware attackT-Mobile confirms data breach that exposed customer personal infoRecent attacks on Iran were orchestrated by the Indra groupUS FINRA warns US brokerage firms and brokers of ongoing phishing attacksThreat actor claims to be selling data of more than 100 million T-Mobile customersA job ad published by the UK’s Ministry of Defence revealed a secret hacking squadGlowworm Attack allows sound recovery via a device’s power indicator LEDIf you want to also receive for free the international press subscribe here.

Follow me on Twitter: @securityaffairs and Facebook

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}
Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

If you want to also receive for free the international press subscribe here.

Follow me on Twitter: @securityaffairs and Facebook

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}
Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 328 appeared first on Security Affairs.