Tag Archive for: Newsletter

Security Affairs newsletter Round 447 by Pierluigi Paganini

/in


Security Affairs newsletter Round 447 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Rhysida ransomware gang claimed China Energy hack

 | 

North Korea-linked APT Lazarus is using a MagicLine4NX zero-day flaw in supply chain attack

 | 

Hamas-linked APT uses Rust-based SysJoker backdoor against Israel

 | 

App used by hundreds of schools leaking children’s data

 | 

Microsoft launched its new Microsoft Defender Bounty Program

 | 

Exposed Kubernetes configuration secrets can fuel supply chain attacks

 | 

North Korea-linked Konni APT uses Russian-language weaponized documents

 | 

ClearFake campaign spreads macOS AMOS information stealer

 | 

Welltok data breach impacted 8.5 million patients in the U.S.

 | 

North Korea-linked APT Diamond Sleet supply chain attack relies on CyberLink software

 | 

Automotive parts giant AutoZone disclosed data breach after MOVEit hack

 | 

New InfectedSlurs Mirai-based botnet exploits two zero-days

 | 

SiegedSec hacktivist group hacked Idaho National Laboratory (INL)

 | 

CISA adds Looney Tunables Linux bug to its Known Exploited Vulnerabilities catalog

 | 

Enterprise software provider TmaxSoft leaks 2TB of data

 | 

Citrix provides additional measures to address Citrix Bleed

 | 

Tor Project removed several relays associated with a suspicious cryptocurrency scheme

 | 

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

 | 

The Top 5 Reasons to Use an API Management Platform

 | 

Canadian government impacted by data breaches of two of its contractors

 | 

Rhysida ransomware gang is auctioning data stolen from the British Library

 | 

Russia-linked APT29 group exploited WinRAR 0day in attacks against embassies

 | 

DarkCasino joins the list of APT groups exploiting WinRAR zero-day

 | 

US teenager pleads guilty to his role in credential stuffing attack on a betting site

 | 

Security Affairs newsletter Round 446 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

8Base ransomware operators use a new variant of the Phobos ransomware

 | 

Russian APT Gamaredon uses USB worm LitterDrifter against Ukraine

 | 

The board of directors of OpenAI fired Sam Altman

 | 

Medusa…

Source…

Forbes Daily Newsletter: Malware Dealer Unmasked

/in


Good morning,

Friday is here, and we have your headlines: Summer travel planning is in full swing; here are tips on avoiding scams. The identity of a notorious malware dealer was exposed, a first for the PGA Championship and the latest developments in last month’s murder of Cash App creator Bob Lee.

BREAKING NEWS

Disney scrapped a $1 billion plan that would have created more than 2,000 jobs in Florida, amid an ongoing culture war with Gov. Ron DeSantis, a likely Republican presidential candidate. A DeSantis spokesperson said the decision was “unsurprising” and blamed Disney’s “financial straits, falling market cap and declining stock price.”

Tech executive Nima Momeni pleaded not guilty for allegedly stabbing fellow tech executive Bob Lee to death last month in San Francisco. More details have emerged about Lee’s relationship with Momeni’s sister, as well as his lifestyle, reportedly filled with partying and drugs, according to the Wall Street Journal.

TECH + INNOVATION

The identity of “Jack,” a mysterious man who distributes malware (known as Golden Chickens) to some of the most notorious Russian cybercrime gangs, has been revealed and shared with American law enforcement, according to cybersecurity company eSentire. The company declined to share his name with Forbes, as Jack’s life may be in danger: he has a $200,000 bounty out for information on his identity, issued by another hacker who claimed he had been robbed of $1 million.

Fintech startup Ramp announced new OpenAI-powered tools for businesses to help automate customer service tasks, as well as a new slate of investors, including Microsoft CEO Satya Nadella, chief executives from Quora and Instacart, as well as Stanford AI Lab professor Chris Ré. The company wouldn’t disclose the size of its investments.

BUSINESS + FINANCE

A key Department of Labor survey could be overestimating the number of job openings by as many as 300,000, according to economists at Goldman Sachs. JOLTS, a…

Source…

Legal Tech Newsletter | Dentons

/in


We tell you about the latest developments and what’s next in telecommunications, cybersecurity, personal data, fintech, and intellectual property.

01 – 15 March 2022

Telecoms

New Subtel’s team. On March 11, the new Undersecretary of Telecommunications, Claudio Araya San Martín, took office, accompanied by his advisory and executive team. The cabinet team is composed of Manuel Luna (chief of staff) and advisors Adolfo Oliva and Felipe Pavez. The executive team is composed of Marco Silva Sandoval (head of the Legal Division), Virginia Reginato (head of the Regulatory Policy and Studies Division), Marcelo Rutte (head of the Telecommunications Development Fund (FDT) Management Division), Raúl Domínguez (head of the Fiscalization Division), Jacob Sandoval (head of the Administration and Finance Division) and Francisco Miranda (deputy head of the Concessions Division). Undersecretary Araya and his team will be responsible for completing the deployment of the 5G network and the National Optical Fiber project, implementing the state-owned telecommunications network company and the National Connectivity Registry. They will also be in charge of the modification of the General Telecommunications Law to transform the FDT into a demand subsidy mechanism and reviewing the concession allocation processes, among other initiatives included in the Government Plan.

Connectivity in border zones. On March 8, Subtel launched a public tender to subsidize the deployment of fiber optic cables in 17 border towns located in the central and northern areas of the country. Of these, 7 correspond to border crossings or complexes. The total amount of the subsidy for the winning companies is USD 15.000.000. This initiative complements the tender already awarded to Telefónica del Sur in August 2021, which is committed to deploy optical infrastructure in ten border towns located in the regions of Los Ríos, Los Lagos, Aysén and Magallanes. Details of the project can be found at the following link: https://www.subtel.gob.cl/subtel-lanza-concurso-publico-para-conectar-pasos-fronterizos-en-zona-norte-y-centro-del-pais/.

Initiatives with no new developments: (i) the bill that allows users to terminate…

Source…

Global Payments Newsletter, July 2021 | Hogan Lovells

/in


In this Newsletter:

  • Regulatory Developments
  • Payment Market Developments
  • Surveys and Reports

Regulatory Developments

Europe: EBA consults on proposed guidelines on limited network exclusion under PSD2

On 15 July 2021, the EBA published a consultation paper (EBA/CP/2021/28) proposing guidelines on the limited network exclusion (LNE) under PSD2.

The EBA explains that Article 3(k) of PSD2 introduced an exclusion for services based on specific payment instruments that can be used only in a limited way. It believes that the implementation and application of the LNE requirements diverges significantly between member states, which impedes the single market for payment services in the EU and creates opportunities for regulatory arbitrage. The EBA also believes that consumers are sometimes unaware that they do not benefit from the protection envisaged under PSD2.

It is therefore proposing guidelines to bring about convergence on a number of aspects of the LNE. In particular:

  • The draft guidelines look at the requirements for each type of limited network exclusion under Article 3(k) of PSD2, including, where relevant, criteria and indicators on how to assess limited network of service providers and the meaning of a limited range of goods and services.
  • The guidelines also cover the EBA’s expectations on the use of payment instruments within a limited network, the application of the LNE by regulated PSPs and electronic money issuers, and the application of the notifications to competent authorities.

The deadline for responses is 15 October 2021. The EBA will publish final guidelines after the end of the consultation period.

Back to top

UAE: Central bank issues Retail Payment Services and Card Schemes Regulation

On 17 July 2021, the Central Bank of the UAE (CBUAE) announced the introduction of the new Retail Payment Services and Card Schemes Regulation (the Regulation). This is the fourth regulation in the UAE’s “enhancement journey” towards an improved digital payments infrastructure.

The Regulation introduces a licensing regime for payment services providers (PSPs) providing, or wishing to provide, one or more of nine payment services or payment card schemes in the UAE:…

Source…