"iPhones in a law enforcement lab mysteriously rebooted losing their After First Unlock (AFU) state."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 08 November 2024, 1335 UTC.

Content and Source:  Email subscription via https://feedly.com.   https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fsecurityaffairs.co%2Fwordpress%2Ffeed

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Security Affairs

68K followers23 articles per week#security#tech

17

Most popular

iPhones in a law enforcement forensics lab mysteriously rebooted losing their After First Unlock (AFU) state

iPhones reboot complicate police investigations

•

by Pierluigi Paganini / 1h

Law enforcement warns that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them harder to unlock, reported 404 Media. Law enforcement warns that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them much harder to unlock, per a document obtained by 404 Media . 404 Media obtained the document from a mobile forensics s

ToxicPanda Android banking trojan targets Europe and LATAM, with a focus on Italy

IoC > 1 domain

•

22by Pierluigi Paganini / 2d

•

ToxicPanda malware targets banking users

The ToxicPanda Android malware has infected over 1,500 devices, enabling attackers to perform fraudulent banking transactions. Cleafy researchers spotted a new Android banking malware, dubbed ToxicPanda, which already infected over 1,500 Android devices. The ToxicPanda malware shares some bot command similarities with the TgToxic trojan family was observed spreading in Southeast Asia. However, th

South Korea fined Meta $15.67M for illegally collecting and sharing Facebook users

Meta fined for user data breach

•

by Pierluigi Paganini / 2d

’ sensitive data, including political views and sexual orientation, with advertisers. South Korea’s data privacy watchdog, Personal Information Protection Commission (PIPC), fined Meta 21.62 billion won ($15.67 million) for illegally collecting sensitive personal information from Facebook users, including data about their political views and sexual orientation, and sharing it with advertisers wit

Yesterday

U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog

5 TTPs

•

by Pierluigi Paganini / 14h

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog : CVE-2024-43093 Android Framework Privilege Escalation Vulnerab

DPRK-linked BlueNoroff used macOS malware with novel persistence

IoC > 1 domain

•

by Pierluigi Paganini / 20h

•

12 TTPs

•

North Korean hackers target crypto firms

SentinelLabs observed North Korea-linked threat actor BlueNoroff targeting businesses in the crypto industry with a new multi-stage malware. SentinelLabs researchers identified a North Korea-linked threat actor targeting crypto businesses with new macOS malware as part of a campaign tracked as “Hidden Risk.” The attackers, linked to BlueNoroff and past RustBucket campaigns, used fake cryptocurren

Nov 6, 2024

Canada ordered ByteDance to shut down TikTok operations in the country over security concerns

Canada orders TikTok business wind-up

•

by Pierluigi Paganini / 1d

Canada ordered ByteDance to shut down TikTok operations over security concerns but did not issue a full ban on the platform. The Canadian government ordered ByteDance to wind up TikTok Technology Canada, Inc. over security concerns following a national security review under the Investment Canada Act Canada’s decision to require ByteDance to dissolve the operations of the popular video-sharing pla

Critical bug in Cisco UWRB access points allows attackers to run commands as root

2 TTPs

•

by Pierluigi Paganini / 1d

•

CVE-2024-20418

Cisco fixed a critical flaw in URWB access points, allowing attackers to run root commands, compromising industrial wireless automation security. Cisco has addressed a critical vulnerability, tracked as CVE-2024-20418 , that could be exploited by unauthenticated, remote attackers to run commands with root privileges on vulnerable Ultra-Reliable Wireless Backhaul (URWB) access points used for indu

INTERPOL: Operation Synergia II disrupted +22,000 malicious IPs

Interpol dismantles 22000 malicious IPs

•

by Pierluigi Paganini / 1d

A global law enforcement operation called Operation Synergia II dismantled over 22,000 malicious IPs linked to phishing, infostealers, and ransomware, INTERPOL said. INTERPOL announced this week it took down more than 22,000 malicious servers linked to cybercriminal activities as part of a global operation code-named Operation Synergia II. Operation Synergia II is a collaborative effort by INTERP

Memorial Hospital and Manor suffered a ransomware attack

Memorial Hospital suffers ransomware attack

•

by Pierluigi Paganini / 1d

Georgia, a ransomware attack disrupted Memorial Hospital and Manor’s access to its Electronic Health Record system. A ransomware attack hit Memorial Hospital and Manor in Bainbridge, Georgia, and disrupted the access to its Electronic Health Record system. Memorial Hospital and Manor is a community hospital and healthcare facility that serves Decatur County and surrounding areas in southwest Geor

Synology fixed critical flaw impacting millions of DiskStation and BeePhotos NAS devices

2 TTPs

•

by Pierluigi Paganini / 2d

Synology addressed a critical vulnerability in DiskStation and BeePhotos NAS devices that could lead to remote code execution. Taiwanese vendor Synology has addressed a critical security vulnerability, tracked as CVE-2024-10443, that impacts DiskStation and BeePhotos. An attacker can exploit the flaw without any user interaction and successful exploitation of this flaw could lead to remote code e

Nov 5, 2024

U.S. CISA adds PTZOptics camera bugs to its Known Exploited Vulnerabilities catalog

2 TTPs

•

by Pierluigi Paganini / 3d

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds PTZOptics PT30X-SDI/NDI camera bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog : CVE-2024-8957 PTZOptics PT30X-SDI/NDI Cameras OS Command Injection Vulnerability CVE-2024-895

Canadian authorities arrested alleged Snowflake hacker

Valid Accounts (Enterprise T1078)

•

by Pierluigi Paganini / 3d

•

Canadian hacker arrested for Snowflake breach

Canadian authorities arrested a suspect linked to multiple hacks following a breach of cloud data platform Snowflake earlier this year. Canadian law enforcement agencies arrested a suspect, Alexander “Connor” Moucka (aka Judische and Waifu), who is accused of being responsible for a series of attacks relying on information stolen from the cloud data warehousing platform Snowflake earlier this yea

Nov 4, 2024

Android flaw CVE-2024-43093 may be under limited, targeted exploitation

by Pierluigi Paganini / 3d

Google warned that a vulnerability, tracked as CVE-2024-43093, in the Android OS is actively exploited in the wild. Threat actors are actively exploiting a vulnerability, tracked as CVE-2024-43093, in the Android OS, Google warns. The vulnerability is a privilege escalation issue in the Android Framework component. Successful exploitation of the vulnerability could lead to unauthorized access to

July 2024 ransomware attack on the City of Columbus impacted 500,000 people

Columbus ransomware attack exposes 500000

•

by Pierluigi Paganini / 3d

The July 2024 ransomware attack that hit the City of Columbus, Ohio, exposed the personal and financial data of 500,000 individuals. On July 18, 2024, the City of Columbus, Ohio, suffered a cyber attack that impacted the City’s services. On July 29, 2024, the City published an update on the City’s website and confirmed that the City of Columbus suffered a ransomware attack. The city added that th

Nigerian man Sentenced to 26+ years in real estate phishing scams

by Pierluigi Paganini / 3d

Nigerian Kolade Ojelade gets 26 years in U.S. for phishing scams that stole millions by hacking email accounts. A Nigerian national was sentenced to 26 years in prison in the US for stealing millions by compromising the email accounts of real estate businesses. The Nigerian national, Kolade Ojelade, Kolade Akinwale Ojelade (34), a resident of Leicester (UK) was sentenced to 26 years in U.S. for p

Russian disinformation campaign active ahead of 2024 US election

Russia spreads election disinformation video

•

by Pierluigi Paganini / 4d

U.S. intel says Russia made a fake video claiming Haitians voted illegally in Georgia, aiming to spread election disinformation. U.S. intel reports Russia created a fake viral video falsely claiming Haitians illegally voted multiple times in Georgia, aiming to spread election disinformation . U.S. intelligence agencies’ claims are based on existing intel and past Russian disinformation actions. G

Nov 3, 2024

International law enforcement operation shut down DDoS-for-hire platform Dstat.cc

German police arrest DDoS suspects

•

by Pierluigi Paganini / 4d

German police shut down DDoS-for-hire platform Dstat.cc and arrested two men accused of operating the site used for launching DDoS attacks. German police shut down the DDoS-for-hire platform Dstat.cc that allowed its customers to launch DDoS attacks. Two men, aged 19 and 28 from Darmstadt and Rhein-Lahn, were arrested in Germany for allegedly managing criminal infrastructure used for DDoS attacks

End of feed