Security Affairs bulletin Round 475 by Pierluigi Paganini – GLOBAL EDITION

Pierluigi Paganini
June 09, 2024

A fresh batch of the weekly SecurityAffairs bulletin has arrived! Every week, the finest security articles from Security Affairs are delivered to your email inbox for free.

Enjoy the latest edition of the weekly SecurityAffairs bulletin, with highlights from the global press.

Global Press – Bulletin

Cybercrime

Cybercriminals Launch Assault on Banking Clients in EU With V3B Phishing Kit

National Police Dismantles Network That Garnered Over 5,300,000 Euros Through Illicit Distribution of Audiovisual Content

Ransomware Incident Impacts Services at London Hospital

Ticketmaster and Other Organizations Affected by Snowflake Data Breach

Source Code of New York Times Stolen via Exposed GitHub Token

Malware

Decoy Dog Trojan Strikes Russian Power Firms, IT Companies, and Government Agencies

RansomHub: Latest Ransomware Traces Back to Older Knight Variant

FBI Retrieves 7,000 LockBit Keys, Encourages Ransomware Victims to Contact

TargetCompany Unleashes Linux Variant Against ESXi Environments

UAC-0020 (Vermin) Strikes Defense Forces of Ukraine with a SPECTR WPS-Backed Campaign (“SickSync” Operation)

Hacking

Snowflake at Helm of World’s Most Extensive Data Breach

Tackling Millions of Modems (and Conducting an Investigation on Modem Breaches)

Molding Fabrications into Reality || Harnessing CVE-2024-4358 Exploits

Discovery of Five Fresh Vulnerabilities in Zyxel NAS Devices (including Code Execution and Privilege Escalation)

Zero-Day TikTok Breach Seizes Control of Celebrity and Brand Accounts

Capable of Stealing All Your Typed and Viewed Data on Windows PC with Just Two Lines of Code — Inside Copilot+ Recall Catastrophe

2024: Repurposing Old CVEs for New Targets — Active Exploitation of ThinkPHP

Intelligence and Information Warfare

Could Video Games Impact Terrorist Finances?

Halting FlyingYeti’s Assault on Ukraine

GRU’s BlueDelta Targets Vital Networks in Europe with Multi-Phase Espionage Operations

Exposed: Russian Legal Organization Linked to Kremlin Activities in Europe

NSA Chief Warns of China’s Preparation for Disruptive Cyberattacks on Critical Infrastructure

Efforts by Russia to Disrupt the 2024 Paris Olympic Games

Cybersecurity

Generative AI Set to Amplify Risk of Deepfakes and Other Frauds in Banking Sector

Exposure of Politicians’ Personal Information on the Dark Web

Strategies for Preventing and Conducting Warfare in the AI–CYBER Era

Revelation of Numerous Privacy Breaches from Google Leak

Empowering Maritime Cybersecurity with Coast Guard Initiatives

361 Million Stolen Accounts Leaked on Telegram Added to HIBP

Cisco Addresses Webex Vulnerabilities Post German Government Meetings Exposure

Guidelines on Opting Out of Instagram and Facebook Data Utilization for AI

Detecting Deepfakes: Revealing Key Indicators by the Developer of a Detection Tool

Pierluigi Paganini

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

(SecurityAffairs – hacking, bulletin)

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts