A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

Raspberry Robin spreads via removable USB devicesMalware campaign hides a shellcode into Windows event logsUS gov sanctions cryptocurrency mixer Blender also used by North Korea-linked Lazarus APTHow the thriving fraud industry within Facebook attacks independent mediaQNAP fixes multiple flaws, including a QVR RCE vulnerabilityAnonymous and Ukraine IT Army continue to target Russian entitiesNetDooka framework distributed via a pay-per-install (PPI) malware serviceVulnerable Docker Installations Are A Playhouse for Malware AttacksUkraine IT Army hit EGAIS portal impacting Russia’s alcohol distributionGoogle addresses actively exploited Android flaw in the kernelCisco addresses three bugs in Enterprise NFVIS SoftwareA couple of 10-Year-Old flaws affect Avast and AVG antivirusF5 warns its customers of tens of flaws in its productsChina-linked Winnti APT steals intellectual property from companies worldwidePro-Ukraine attackers compromise Docker images to launch DDoS attacks on Russian sitesExperts linked multiple ransomware strains North Korea-backed APT38 groupAn expert shows how to stop popular ransomware samples via DLL hijackingChina-linked APT Curious Gorge targeted Russian govt agenciesA DNS flaw impacts a library used by millions of IoT devicesChina-linked Moshen Dragon abuses security software to sideload malwareUNC3524 APT uses IP cameras to deploy backdoors and target ExchangePackage Analysis dynamic analyzes packages in open-source repositoriesCar rental company Sixt hit by a cyberattack that caused temporary disruptionsThe mystery behind the samples of the new REvil ransomware operationGroup-IB CEO remains in prison – the Russian-led company has been ‘blacklisted’ in ItalyIoT and Cybersecurity: What’s the Future?Russia-linked APT29 targets diplomatic and government organizationsSynology and QNAP warn of critical Netatalk flaws in some of their productsHackers stole +80M from DeFi platforms Rari Capital and Fei ProtocolApr 24 – Apr 30 Ukraine – Russia the silent cyber conflictPlease vote for Security Affairs as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERSVote for me in the sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog” and others of your choice.To nominate, please visit: https://docs.google.com/forms/d/e/1FAIpQLSfxxrxICiMZ9QM9iiPuMQIC-IoM-NpQMOsFZnJXrBQRYJGCOw/viewform  

Follow me on Twitter: @securityaffairs and Facebook

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}

try {
window._mNHandle.queue.push(function (){
window._mNDetails.loadTag(“816788371”, “300×250”, “816788371”);
});
}
catch (error) {}
Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

The post Security Affairs newsletter Round 364 by Pierluigi Paganini appeared first on Security Affairs.