A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. African multinational telco giant MTN Group disclosed a data breach CEO of cybersecurity firm charged with installing malware […

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

African multinational telco giant MTN Group disclosed a data breach

CEO of cybersecurity firm charged with installing malware on hospital systems

JPCERT warns of DslogdRAT malware deployed in Ivanti Connect Secure

SAP NetWeaver zero-day allegedly exploited by an initial access broker

Operation SyncHole: Lazarus APT targets supply chains in South Korea

Interlock ransomware gang started leaking data allegedly stolen from leading kidney dialysis firm DaVita

Yale New Haven Health (YNHHS) data breach impacted 5.5 million patients

Crooks exploit the death of Pope Francis

WhatsApp introduces Advanced Chat Privacy to protect sensitive communications

Android spyware hidden in mapping software targets Russian soldiers

Crypto mining campaign targets Docker environments with new evasion technique

The popular xrpl.js Ripple cryptocurrency library was compromised in a supply chain attack

British retailer giant Marks & Spencer (M&S) is managing a cyber incident

Chinese Cybercriminals Released Z-NFC Tool for Payment Fraud

Millions of SK Telecom customers are potentially at risk following USIM data compromise

Abilene city, Texas, takes systems offline following a cyberattack

Japan ’s FSA warns of unauthorized trades via stolen credentials from fake security firms’ sites

Kimsuky APT exploited BlueKeep RDP flaw in attacks against South Korea and Japan

New sophisticate malware SuperCard X targets Androids via NFC relay attacks

Russia-linked APT29 targets European diplomatic entities with GRAPELOADER malware

International Press – Newsletter

Cybercrime

Hackers pounce on Pope’s death with scams 

Damage caused by unauthorized access to and transactions on internet trading services is increasing sharply  

Southeast Asian cyber fraud industry at ‘inflection point’ as it expands globally  

British retailer M&S confirms being hit by ‘cyber incident’ amid store delays  

Blue Shield of California Data Breach Impacts 4.7 Million People  

NFC Fraud Wave: Evolution of Ghost Tap on the Dark Web 

FBI says online scams raked in $16.6 billion last year  

Interlock ransomware claims DaVita attack, leaks stolen data

Cyber Firm CEO Accused of Placing Malware on Hospital Device  

Ransomware Groups Evolve Affiliate Models

Introducing ToyMaker, an initial access broker working in cahoots with double extortion gangs  

AI-Enabled Darcula-Suite Makes Phishing Kits More Accessible, Easier to Deploy  

Malware

XRP supply chain attack: Official NPM package infected with crypto stealing backdoor 

SuperCard X: exposing a Chinese-speaker MaaS for NFC Relay fraud operation 

New Rust Botnet “RustoBot” is Routed via Routers  

DslogdRAT Malware Installed in Ivanti Connect Secure  

Iran-Linked Hackers Target Israel with MURKYTOUR Malware via Fake Job Campaign

Hacking

Remote Exploitation of Nissan Leaf: Controlling Critical Body Elements from the Internet

Obfuscation Overdrive: Next-Gen Cryptojacking with Layers      

ConfusedComposer: A Privilege Escalation Vulnerability Impacting GCP Composer 

ReliaQuest Uncovers New Critical Vulnerability in SAP NetWeaver  

Novel Universal Bypass for All Major LLMs  

Fake Security Vulnerability Phishing Campaign Targets WooCommerce Users 

Craft CMS RCE exploit chain used in zero-day attacks to steal data

Intelligence and Information Warfare

APT Group Profiles – Larva-24005  

Whistleblower: DOGE Siphoned NLRB Case Data  

Android spyware trojan targets Russian military personnel who use Alpine Quest mapping software

Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows  

Inside Gamaredon’s PteroLNK: Dead Drop Resolvers and evasive Infrastructure

DPRK Hackers Steal $137M from TRON Users in Single-Day Phishing Attack

Operation SyncHole: Lazarus APT goes back to the well  

FBI seeks help to unmask Salt Typhoon hackers behind telecom breaches

North Korean Hackers Spread Malware via Fake Crypto Firms and Job Interview Lures

Cybersecurity

SK Telecom warns customer USIM data exposed in malware attack

Adversarial machine learning is cybersecurity’s new frontier   

Introducing Advanced Chat Privacy: Enhanced Protection for Your Most Sensitive Conversations

Microsoft Defender XDR False Positive Leads to Massive Data Leak of 1,700+ Sensitive Documents  

What Are We Really Securing?  

Understanding the threat landscape for Kubernetes and containerized assets

Employee monitoring app leaks 21 million screenshots in real time

Mobile provider MTN says cyberattack compromised customer data     

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

Source: SecurityAffairs
Source Link: https://securityaffairs.com/177050/breaking-news/security-affairs-newsletter-round-521-by-pierluigi-paganini-international-edition.html