A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.—————————————————————————————————————————————————–Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.[US sued TikTok and ByteDance for violating children’s privacy laws](https://securityaffairs.com/166512/laws-and-regulations/us-doj-sued-tiktok.html) [Russia-linked APT used a car for sale as a phishing lure to target diplomats with HeadLace malware](https://securityaffairs.com/166496/apt/russia-apt-headlace-malware.html) [Investors sued CrowdStrike over false claims about its Falcon platform](https://securityaffairs.com/166480/security/investors-have-sued-crowdstrike.html) [Avtech camera vulnerability actively exploited in the wild, CISA warns](https://securityaffairs.com/166471/hacking/avtech-camera-vulnerability-exploited.html) [Over 20,000 internet-exposed VMware ESXi instances vulnerable to CVE-2024-37085](https://securityaffairs.com/166432/hacking/vmware-esxi-cve-2024-37085-vulnerable-instances.html) [Pharma Giant Cencora confirmed the theft of personal and health information](https://securityaffairs.com/166422/data-breach/cencora-confirmed-theft-pii-heath-data.html) [Apple fixed dozens of vulnerabilities in iOS and macOS](https://securityaffairs.com/166390/mobile-2/apple-ios-17-6-and-ipados-17-6.html) [Phishing campaigns target SMBs in Poland, Romania, and Italy with multiple malware families](https://securityaffairs.com/166380/cyber-crime/phishing-campaigns-target-smbs-poland.html) [A Fortune 50 company paid a record-breaking $75 million ransom](https://securityaffairs.com/166372/uncategorized/fortune-50-company-paid-record-breaking-75m-ransom.html) [CISA adds VMware ESXi bug to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/166362/security/cisa-vmware-esxi-bug-known-exploited-vulnerabilities-catalog.html) [Mandrake Android spyware found in five apps in Google Play with over 32,000 downloads since 2022](https://securityaffairs.com/166342/mobile-2/mandrake-android-spyware-google-play.html) [SideWinder phishing campaign targets maritime facilities in multiple countries](https://securityaffairs.com/166325/breaking-news/sidewinder-phishing-campaign-maritime-facilities.html) [A crafty phishing campaign targets Microsoft OneDrive users](https://securityaffairs.com/166312/hacking/microsoft-onedrive-phishing.html) [Ransomware gangs exploit recently patched VMware ESXi bug CVE-2024-37085](https://securityaffairs.com/166295/cyber-crime/ransomware-gangs-exploit-cve-2024-37085-vmware-esxi.html) [Acronis Cyber Infrastructure bug actively exploited in the wild](https://securityaffairs.com/166277/hacking/acronis-cyber-infrastructure-bug-exploited.html) [Fake Falcon crash reporter installer used to target German Crowdstrike users](https://securityaffairs.com/166256/hacking/fake-crowdstrike-falcon-crash-reporter-installer.html) [Belarus-linked APT Ghostwriter targeted Ukraine with PicassoLoader malware](https://securityaffairs.com/166265/intelligence/belarus-apt-ghostwriter-targeted-ukraine.html) [French authorities launch disinfection operation to eradicate PlugX malware from infected hosts](https://securityaffairs.com/166213/cyber-crime/plugx-malware-disinfection-operation.html)**International Press — Newsletter****Cybercrime**[Malicious Inauthentic Falcon Crash Reporter Installer Distributed to German Entity via Spearphishing Website](https://www.crowdstrike.com/blog/malicious-inauthentic-falcon-crash-reporter-installer-spearphishing/)[Ransomware operators exploit ESXi hypervisor vulnerability for mass encryption](https://www.microsoft.com/en-us/security/blog/2024/07/29/ransomware-operators-exploit-esxi-hypervisor-vulnerability-for-mass-encryption/)[STARGAZERS GHOST NETWORK](https://research.checkpoint.com/2024/stargazers-ghost-network/)[Dark Angels ransomware receives record-breaking $75 million ransom](https://www.bleepingcomputer.com/news/security/dark-angels-ransomware-receives-record-breaking-75-million-ransom/)[UNC4393 Goes Gently into the SILENTNIGHT](https://cloud.google.com/blog/topics/threat-intelligence/unc4393-goes-gently-into-silentnight/)[Three Individuals Sentenced for Massive $88M Business Telephone System Software License Piracy Scheme](https://www.justice.gov/opa/pr/three-individuals-sentenced-massive-88m-business-telephone-system-software-license-piracy)[Ransomware Attack Hits OneBlood Blood Bank, Disrupts Medical Operations](https://www.securityweek.com/ransomware-attack-hits-oneblood-blood-bank-disrupts-medical-operations/)**Malware**[Unplugging PlugX: Sinkholing the PlugX USB worm botnet](https://blog.sekoia.io/unplugging-plugx-sinkholing-the-plugx-usb-worm-botnet/)[Mandrake spyware sneaks onto Google Play again, flying under the radar for two years](https://securelist.com/mandrake-apps-return-to-google-play/113147/)[Phishing targeting Polish SMBs continues via ModiLoader](https://www.welivesecurity.com/en/eset-research/phishing-targeting-polish-smbs-continues-modiloader/)[BingoMod: The new android RAT that steals money and wipes data](https://www.cleafy.com/cleafy-labs/bingomod-the-new-android-rat-that-steals-money-and-wipes-data)[BITS and Bytes: Analyzing BITSLOTH, a newly identified backdoor](https://www.elastic.co/security-labs/bits-and-bytes-analyzing-bitsloth)**Hacking**[SeleniumGreed: Threat actors exploit exposed Selenium Grid services for Cryptomining](https://www.wiz.io/blog/seleniumgreed-cryptomining-exploit-attack-flow-remediation-steps)[Acronis Product Vulnerability Exploited in the Wild](https://www.securityweek.com/acronis-product-vulnerability-exploited-in-the-wild/)[OneDrive Pastejacking: The crafty phishing and downloader campaign](https://www.trellix.com/blogs/research/onedrive-pastejacking/)[‘EchoSpoofing’ — A Massive Phishing Campaign Exploiting Proofpoint’s Email Protection to Dispatch Millions of Perfectly Spoofed Emails](https://labs.guard.io/echospoofing-a-massive-phishing-campaign-exploiting-proofpoints-email-protection-to-dispatch-3dd6b5417db6)[Windows AppLocker Driver LPE Vulnerability — CVE-2024-21338](https://www.crowdfense.com/windows-applocker-driver-lpe-vulnerability-cve-2024-21338/)[StackExchange Abused to Spread Malicious Python Package That Drains Victims Crypto Wallets](https://checkmarx.com/blog/stackexchange-abused-to-spread-malicious-python-package-that-drains-victims-crypto-wallets/)[WHO KNEW? DOMAIN HIJACKING IS SO EASY](https://blogs.infoblox.com/threat-intelligence/who-knew-domain-hijacking-is-so-easy/)[Social Media Malvertising Campaign Promotes Fake AI Editor Website for Credential Theft](https://www.trendmicro.com/en_us/research/24/h/malvertising-campaign-fake-ai-editor-website-credential-theft.html)[A $500 Open Source Tool Lets Anyone Hack Computer Chips With Lasers](https://www.wired.com/story/rayv-lite-laser-chip-hacking-tool/)[Israeli hacktivist group brags it took down Iran’s internet](https://www.theregister.com/2024/08/02/israeli_hacktivists/)**Intelligence and Information Warfare**[SideWinder Utilizes New Infrastructure to Target Ports and Maritime Facilities in the Mediterranean Sea](https://blogs.blackberry.com/en/2024/07/sidewinder-targets-ports-and-maritime-facilities-in-the-mediterranean-sea)[North Korean Government Hacker Charged for Involvement in Ransomware Attacks Targeting U.S. Hospitals and Health Care Providers](https://www.justice.gov/opa/pr/north-korean-government-hacker-charged-involvement-ransomware-attacks-targeting-us-hospitals)[U.S. Trades Cybercriminals to Russia in Prisoner Swap](https://krebsonsecurity.com/2024/08/u-s-trades-cybercriminals-to-russia-in-prisoner-swap/)[Fighting Ursa Luring Targets With Car for Sale](https://unit42.paloaltonetworks.com/fighting-ursa-car-for-sale-phishing-lure/)**Cybersecurity**[When Cyberattacks Are Inevitable, Focus on Cyber Resilience](https://hbr.org/2024/07/when-cyberattacks-are-inevitable-focus-on-cyber-resilience)[IBM: Cost of a breach reaches nearly $5 million, with healthcare being hit the hardest](https://therecord.media/ibm-breach-report-cost-rise-to-5-million)[Attor-ney Gen-er-al Ken Pax-ton Secures $1.4 Bil-lion Set-tle-ment with Meta Over Its Unau-tho-rized Cap-ture of Per-son-al Bio-met-ric Data In Largest Set-tle-ment Ever Obtained From An Action Brought By A Sin-gle State](https://www.texasattorneygeneral.gov/news/releases/attorney-general-ken-paxton-secures-14-billion-settlement-meta-over-its-unauthorized-capture)[Google Chrome adds app-bound encryption to block infostealer malware](https://www.bleepingcomputer.com/news/security/google-chrome-adds-app-bound-encryption-to-block-infostealer-malware/)[UK calls out China state-affiliated actors for malicious cyber targeting of UK democratic institutions and parliamentarians](https://www.ncsc.gov.uk/news/china-state-affiliated-actors-target-uk-democratic-institutions-parliamentarians)[Hackers Steal Personal Information From Pharma Giant Cencora](https://www.securityweek.com/hackers-steal-personal-information-from-pharma-giant-cencora/)[CrowdStrike sued by shareholders over global outage](https://www.bbc.com/news/articles/cy08ljxndr4o) [](https://www.securityweek.com/using-threat-intelligence-to-predict-potential-ransomware-attacks/)[Using Threat Intelligence to Predict Potential Ransomware Attacks](https://www.securityweek.com/using-threat-intelligence-to-predict-potential-ransomware-attacks/)[Justice Department Sues TikTok and Parent Company ByteDance for Widespread Violations of Children’s Privacy Laws](https://www.justice.gov/opa/pr/justice-department-sues-tiktok-and-parent-company-bytedance-widespread-violations-childrens)Follow me on Twitter: [**@securityaffairs**](https://twitter.com/securityaffairs) and [**Facebook**](https://www.facebook.com/sec.affairs) and [**Mastodon**](https://infosec.exchange/@securityaffairs)[**Pierluigi Paganini**](http://www.linkedin.com/pub/pierluigi-paganini/b/742/559)**(** [**SecurityAffairs**](http://securityaffairs.co/wordpress/)**–** **hacking, newsletter)**
Related Tags:
NAICS: 551 – Management Of Companies And Enterprises
NAICS: 55 – Management Of Companies And Enterprises
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 923 – Administration Of Human Resource Programs
NAICS: 334 – Computer And Electronic Product Manufacturing
NAICS: 62 – Health Care And Social Assistance
NAICS: 541 – Professional
Scientific
Technical Services
NAICS: 333 – Machinery Manufacturing
NAICS: 622 – Hospitals
Associated Indicators: