Ghost in the Cloud: Weaponizing AWS X-Ray for Command & Control
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 65
Security Affairs newsletter Round 544 by Pierluigi Paganini – INTERNATIONAL EDITION
GreyNoise detects 500% surge in scans targeting Palo Alto Networks portals
U.S. CISA adds Smartbedded Meteobridge, Samsung, Juniper ScreenOS, Jenkins, and GNU Bash flaws to its Known Exploited Vulnerabilities catalog
ShinyHunters Launches Data Leak Site: Trinity of Chaos Announces New Ransomware Victims
ProSpy, ToSpy malware pose as Signal and ToTok to steal data in UAE
Google warns of Cl0p extortion campaign against Oracle E-Business users
CERT-UA warns UAC-0245 targets Ukraine with CABINETRAT backdoor
Allianz Life data breach impacted 1.5 Million people
Cybercrime group claims to have breached Red Hat ‘s private GitHub repositories
China-linked APT Phantom Taurus uses Net-Star malware in espionage campaigns against key sectors
OpenSSL patches 3 vulnerabilities, urging immediate updates
Apple urges users to update iPhone and Mac to patch font bug
WestJet confirms cyberattack exposed IDs, passports in June incident
Broadcom patches VMware Zero-Day actively exploited by UNC5174
UK convicts Chinese national in £5.5B crypto fraud, marks world’s largest Bitcoin seizure
U.S. CISA adds Adminer, Cisco IOS, Fortra GoAnywhere MFT, Libraesva ESG, and Sudo flaws to its Known Exploited Vulnerabilities catalog
Asahi halts ordering, shipping, and customer service after cyberattack
