Código HTML do Conteúdo
Post: Security Affairs newsletter Round 539 by Pierluigi Paganini – INTERNATIONAL EDITION - Against Invaders - Notícias de CyberSecurity para humanos.
<div>
<h2>Security Affairs newsletter Round 539 by Pierluigi Paganini – INTERNATIONAL EDITION</h2>
<h2>A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.</h2>
<p>Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.</p>
<p><strong>International Press – Newsletter</strong></p>
<p><strong>Cybercrime<a target="_blank"></a></strong></p>
<p><a href="https://www.justice.gov/usao-nm/pr/us-government-seizes-online-marketplaces-selling-fraudulent-identity-documents-used" target="_blank">U.S. Government Seizes Online Marketplaces Selling Fraudulent Identity Documents Used in Cybercrime Schemes</a></p>
<p><a href="https://www.lemonde.fr/pixels/article/2025/08/21/auchan-annonce-avoir-ete-victime-d-un-acte-de-cybermalveillance-des-centaines-de-milliers-de-donnees-de-ses-clients-piratees_6633141_4408996.html" target="_blank">Auchan announces that it has been the victim of “an act of cybercrime”, with “hundreds of thousands” of its customers’ data hacked</a></p>
<p><a href="https://cloud.google.com/blog/topics/threat-intelligence/data-theft-salesforce-instances-via-salesloft-drift" target="_blank">Widespread Data Theft Targets Salesforce Instances via Salesloft Drift</a></p>
<p><a href="https://www.microsoft.com/en-us/security/blog/2025/08/27/storm-0501s-evolving-techniques-lead-to-cloud-based-ransomware/" target="_blank">Storm-0501’s evolving techniques lead to cloud-based ransomware</a></p>
<p><a href="https://techcrunch.com/2025/08/05/hacker-used-a-voice-phishing-attack-to-steal-cisco-customers-personal-information/" target="_blank">Hacker used a voice phishing attack to steal Cisco customers’ personal information</a></p>
<p><a href="https://krebsonsecurity.com/2025/08/dslroot-proxies-and-the-threat-of-legal-botnets/" target="_blank">DSLRoot, Proxies, and the Threat of ‘Legal Botnets’</a></p>
<p><a href="https://www.aftonbladet.se/nyheter/a/dRXkqO/befarad-cyberattack-mot-flera-kommun-och-regionsystem" target="_blank">Cyberattack against several municipal and regional systems</a></p>
<p><a href="https://www.securityweek.com/infostealers-the-silent-smash-and-grab-driving-modern-cybercrime/" target="_blank">Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime</a></p>
<p><a href="https://doublepulsar.com/colt-technical-services-gets-ransomwared-via-sharepoint-initial-access-some-learning-points-617da7e27ebc" target="_blank">Colt Technology Services gets ransomware’d via SharePoint initial access— some learning points</a> </p>
<p><a href="https://therecord.media/germany-charges-cyberattack-rosneft" target="_blank">Germany charges man over cyberattack on Rosneft subsidiary</a></p>
<p><a href="https://therecord.media/ransomware-gang-takedown-proliferation" target="_blank">Ransomware gang takedowns causing explosion of new, smaller groups</a></p>
<p><a href="https://doublepulsar.com/citrix-forgot-to-tell-you-cve-2025-6543-has-been-used-as-a-zero-day-since-may-2025-d76574e2dd2c" target="_blank">Citrix forgot to tell you CVE-2025–6543 has been used as a zero day since May 2025</a></p>
<p><strong>Malware</strong><strong></strong></p>
<p><a href="https://www.fortinet.com/blog/threat-research/iot-malware-gayfemboy-mirai-based-botnet-campaign" target="_blank">The Resurgence of IoT Malware: Inside the Mirai-Based “Gayfemboy” Botnet Campaign</a></p>
<p><a href="https://unit42.paloaltonetworks.com/attackers-sell-your-bandwidth-using-sdks/" target="_blank">Your Connection, Their Cash: Threat Actors Misuse SDKs to Sell Your Bandwidth</a></p>
<p><a href="https://news.drweb.ru/show/?i=15047&lng=ru" target="_blank">Android backdoor spies on employees of Russian business</a></p>
<p><a href="https://www.truesec.com/hub/blog/tamperedchef-the-bad-pdf-editor" target="_blank">Tamperedchef – The Bad PDF Editor</a></p>
<p><a href="https://www.gdatasoftware.com/blog/2025/08/38257-appsuite-pdf-editor-backdoor-analysis" target="_blank">AppSuite PDF Editor Backdoor: A Detailed Technical Analysis</a></p>
<p><a href="https://www.bleepingcomputer.com/news/security/malware-devs-abuse-anthropics-claude-ai-to-build-ransomware/" target="_blank">Malware devs abuse Anthropic’s Claude AI to build ransomware</a></p>
<p><strong>Hacking</strong></p>
<p><a href="https://pvotal.tech/breaking-dockers-isolation-using-docker-cve-2025-9074/" target="_blank">Breaking Docker’s Isolation Using… Docker? (CVE-2025-9074)</a></p>
<p><a href="https://blog.sicuranext.com/vtenext-25-02-a-three-way-path-to-rce/" target="_blank">Vtenext 25.02: A three-way path to RCE</a></p>
<p><a href="https://thehackernews.com/2025/08/citrix-patches-three-netscaler-flaws.html" target="_blank">Citrix Patches Three NetScaler Flaws, Confirms Active Exploitation of CVE-2025-7775</a></p>
<p><a href="https://cloud.google.com/blog/topics/threat-intelligence/data-theft-salesforce-instances-via-salesloft-drift/" target="_blank">Widespread Data Theft Targets Salesforce Instances via Salesloft Drift</a></p>
<p><a href="https://labs.watchtowr.com/cache-me-if-you-can-sitecore-experience-platform-cache-poisoning-to-rce/" target="_blank">Cache Me If You Can (Sitecore Experience Platform Cache Poisoning to RCE)</a></p>
<p><a href="https://blog.narimangharib.com/posts/2025%2F08%2F1755854831605?lang=en" target="_blank">Inside the Lab-Dookhtegan Hack: How Iranian Ships Lost Their Voice at Sea</a></p>
<p><a href="https://thehackernews.com/2025/08/whatsapp-issues-emergency-update-for.html" target="_blank">WhatsApp Issues Emergency Update for Zero-Click Exploit Targeting iOS and macOS Devices</a></p>
<p><strong>Intelligence and Information Warfare</strong></p>
<p><a href="https://www.cyfirma.com/research/apt36-targets-indian-boss-linux-systems-with-weaponized-autostart-files/" target="_blank">APT36: Targets Indian BOSS Linux Systems with Weaponized AutoStart Files</a></p>
<p><a href="https://cloud.google.com/blog/topics/threat-intelligence/prc-nexus-espionage-targets-diplomats/" target="_blank">Deception in Depth: PRC-Nexus Espionage Campaign Hijacks Web Traffic to Target Diplomats</a></p>
<p><a href="https://research.checkpoint.com/2025/zipline-phishing-campaign/" target="_blank">ZipLine Campaign: A Sophisticated Phishing Attack Targeting US Companies</a></p>
<p><a href="https://techcrunch.com/2025/08/06/citizen-lab-director-warns-cyber-industry-about-us-authoritarian-descent/" target="_blank">Citizen Lab director warns cyber industry about US authoritarian descent</a></p>
<p><a href="https://www.defensie.nl/actueel/nieuws/2025/08/28/nederlandse-providers-doelwit-van-salt-typhoon" target="_blank">Dutch providers targeted by Salt Typhoon</a></p>
<p><a href="https://www.trendmicro.com/en_us/research/25/h/taoth-campaign.html" target="_blank">TAOTH Campaign Exploits End-of-Support Software to Target Traditional Chinese Users and Dissidents</a></p>
<p><a href="https://www.futurity.org/biased-ai-chatbots-political-views-3292722/" target="_blank">Biased AI chatbots can sway people’s political views in minutes</a></p>
<p><a href="https://aws.amazon.com/it/blogs/security/amazon-disrupts-watering-hole-campaign-by-russias-apt29/" target="_blank">Amazon disrupts watering hole campaign by Russia’s APT29</a></p>
<p><strong>Cybersecurity</strong></p>
<p><a href="https://censys.com/blog/2025-state-of-the-internet-digging-into-residential-proxy-infrastructure" target="_blank">2025 State of the Internet: Digging into Residential Proxy Infrastructure</a></p>
<p><a href="https://therecord.media/electronics-manufacturer-dataio-ransomware" target="_blank">Electronics manufacturer Data I/O reports ransomware attack to SEC</a> </p>
<p><a href="https://www.securityweek.com/ftc-calls-on-tech-firms-to-resist-foreign-anti-encryption-demands/" target="_blank">FTC Calls on Tech Firms to Resist Foreign Anti-Encryption Demands</a></p>
<p><a href="https://digital-strategy.ec.europa.eu/en/news/enisa-operate-eu-cyber-reserve" target="_blank">ENISA to operate the EU Cyber Reserve</a></p>
<p><a href="https://www.bleepingcomputer.com/news/security/over-28-200-citrix-instances-vulnerable-to-actively-exploited-rce-bug/" target="_blank">Over 28,000 Citrix devices vulnerable to new exploited RCE flaw</a></p>
<p><a href="https://www.cisa.gov/news-events/alerts/2025/08/06/microsoft-releases-guidance-high-severity-vulnerability-cve-2025-53786-hybrid-exchange-deployments" target="_blank">Microsoft Releases Guidance on High-Severity Vulnerability (CVE-2025-53786) in Hybrid Exchange Deployments</a> </p>
<p><a href="https://techcrunch.com/2025/08/28/transunion-says-hackers-stole-4-4-million-customers-personal-information/" target="_blank">TransUnion says hackers stole 4.4 million customers’ personal information</a></p>
<p>Follow me on Twitter:<a href="https://twitter.com/securityaffairs" target="_blank">@securityaffairs</a>and<a href="https://www.facebook.com/sec.affairs" target="_blank">Facebook</a>and<a href="https://infosec.exchange/@securityaffairs" target="_blank">Mastodon</a></p>
<p><a href="http://www.linkedin.com/pub/pierluigi-paganini/b/742/559" target="_blank">PierluigiPaganini</a></p>
<p>(<a href="http://securityaffairs.co/wordpress/" target="_blank">SecurityAffairs</a>–hacking,newsletter)</p>
<hr>
<hr>
</div>