A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.—————————————————————————————————————————————————–Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.[Mazda Connect flaws allow to hack some Mazda vehicles](https://securityaffairs.com/170727/security/mazda-connect-flaws.html) [Veeam Backup -& Replication exploit reused in new Frag ransomware attack](https://securityaffairs.com/170717/malware/veeam-backup-replication-flaw-frag-ransomware.html) [Texas oilfield supplier Newpark Resources suffered a ransomware attack](https://securityaffairs.com/170696/cyber-crime/newpark-resources-ransomware-attack.html) [Palo Alto Networks warns of potential RCE in PAN-OS management interface](https://securityaffairs.com/170697/uncategorized/palo-alto-networks-warns-potential-pan-os-rce.html) [iPhones in a law enforcement forensics lab mysteriously rebooted losing their After First Unlock (AFU) state](https://securityaffairs.com/170683/mobile-2/iphones-in-law-enforcement-forensics-lab-mysteriously-rebooted.html) [U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/170673/security/u-s-cisa-adds-palo-alto-expedition-android-cyberpanel-and-nostromo-nhttpd-bugs-to-its-known-exploited-vulnerabilities-catalog.html) [DPRK-linked BlueNoroff used macOS malware with novel persistence](https://securityaffairs.com/170659/malware/bluenoroff-apt-macos-malware.html) [Canada ordered ByteDance to shut down TikTok operations in the country over security concerns](https://securityaffairs.com/170653/security/canada-ordered-bytedance-to-shut-down-tiktok-operations.html) [Critical bug in Cisco UWRB access points allows attackers to run commands as root](https://securityaffairs.com/170646/security/cisco-uwrb-crirical-flaw.html) [INTERPOL: Operation Synergia II disrupted +22,000 malicious IPs](https://securityaffairs.com/170639/cyber-crime/operation-synergia-ii-dismantled-over-22k-malicious-ips.html) [Memorial Hospital and Manor suffered a ransomware attack](https://securityaffairs.com/170629/cyber-crime/memorial-hospital-and-manor-ransomware-attack.html) [South Korea fined Meta $15.67M for illegally collecting and sharing Facebook users](https://securityaffairs.com/170618/digital-id/south-korea-fined-meta-15-67m.html) [Synology fixed critical flaw impacting millions of DiskStation and BeePhotos NAS devices](https://securityaffairs.com/170602/hacking/synology-fixed-critical-bug-in-diskstation-and-beephotos-nas.html) [ToxicPanda Android banking trojan targets Europe and LATAM, with a focus on Italy](https://securityaffairs.com/170605/malware/toxicpanda-android-malware-targets-italy.html) [U.S. CISA adds PTZOptics camera bugs to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/170595/security/u-s-cisa-adds-ptzoptics-camera-bugs-to-its-known-exploited-vulnerabilities-catalog.html) [Canadian authorities arrested alleged Snowflake hacker](https://securityaffairs.com/170587/cyber-crime/canadian-authorities-arrested-snowflake-hacker.html) [Android flaw CVE-2024-43093 may be under limited, targeted exploitation](https://securityaffairs.com/170581/uncategorized/cve-2024-43093-android-flaw-actively-exploited.html) [July 2024 ransomware attack on the City of Columbus impacted 500,000 people](https://securityaffairs.com/170568/data-breach/city-of-columbus-ransomware-attack-impacted-500000-people.html) [Nigerian man Sentenced to 26+ years in real estate phishing scams](https://securityaffairs.com/170561/cyber-crime/nigerian-man-26-years-jail-phishing-scams.html) [Russian disinformation campaign active ahead of 2024 US election](https://securityaffairs.com/170551/intelligence/russia-disinformation-us-election-2024.html) [International law enforcement operation shut down DDoS-for-hire platform Dstat.cc](https://securityaffairs.com/170540/cyber-crime/german-police-shut-down-ddos-for-hire-platform-dstat-cc.html) [US Election 2024 — FBI warning about fake election videos](https://securityaffairs.com/170514/security/us-election-2024-fbi-warning-about-fake-election-videos.html) [Chinese threat actors use Quad7 botnet in password-spray attacks](https://securityaffairs.com/170503/malware/quad7-botnet-used-by-chinese-threat-actors.html)**International Press — Newsletter****Cybercrime**[Tracking Redline developer: Maxim Rudometov](https://www.linkedin.com/pulse/tracking-redline-developer-maxim-rudometov-baptiste-robert-ipdke/)[Cybercrime: Arrests in Hesse and Rhineland-Palatinate](https://www.bka.de/DE/Presse/Listenseite_Pressemitteilungen/2024/Presse2024/241031_PM_Festnahme_Cybercrime.html)[Nigerian Man Sentenced to 26+ Years in Real Estate Phishing / Spoofing Scheme](https://www.justice.gov/usao-ndtx/pr/nigerian-man-sentenced-26-years-real-estate-phishing-spoofing-scheme)[Schneider Electric confirms dev platform breach after hacker steals data](https://www.bleepingcomputer.com/news/security/schneider-electric-confirms-dev-platform-breach-after-hacker-steals-data/)[Ransomware gang claims responsibility for cyber attack on Georgia hospital](https://www.comparitech.com/news/ransomware-gang-claims-responsibility-for-cyber-attack-on-georgia-hospital/)[INTERPOL cyber operation takes down 22,000 malicious IP addresses](https://www.interpol.int/News-and-Events/News/2024/INTERPOL-cyber-operation-takes-down-22-000-malicious-IP-addresses)[Texas Oilfield Supplier Newpark Hit by Ransomware](https://www.securityweek.com/texas-oilfield-supplier-newpark-hit-by-ransomware/)[VEEAM exploit seen used again with a new ransomware: ‘Frag’](https://news.sophos.com/en-us/2024/11/08/veeam-exploit-seen-used-again-with-a-new-ransomware-frag/)[Ransomware attack on German pharmaceutical wholesaler causes disruption in medicine supply](https://agger-labs.com/ransomware/ransomware-attack-on-german-pharmaceutical-wholesaler-causes-disruption-in-medicine-supply/)[Analysing the cultural dimensions of cybercriminal groups — A case study on the Conti ransomware group](https://arxiv.org/abs/2411.02548)**Malware**[CRON#TRAP: Emulated Linux Environments as the Latest Tactic in Malware Staging](https://www.securonix.com/blog/crontrap-emulated-linux-environments-as-the-latest-tactic-in-malware-staging/)[Typosquat Campaign Targeting npm Developers](https://blog.phylum.io/supply-chain-security-typosquat-campaign-targeting-puppeteer-users/)[ToxicPanda: a new banking trojan from Asia hit Europe and LATAM](https://www.cleafy.com/cleafy-labs/toxicpanda-a-new-banking-trojan-from-asia-hit-europe-and-latam)[Cloudy With a Chance of RATs: Unveiling APT36 and the Evolution of ElizaRAT](https://research.checkpoint.com/2024/the-evolution-of-transparent-tribes-new-malware/)[Roblox Developers Targeted with npm Packages Infected with Skuld Infostealer and Blank Grabber](https://socket.dev/blog/roblox-developers-targeted-with-npm-packages-infected-with-infostealers)
**Hacking**[Attackers Abuse DocuSign API to Send Authentic-Looking Invoices At Scale](https://lab.wallarm.com/attackers-abuse-docusign-api-to-send-authentic-looking-invoices-at-scale/)[Unmasking VEILDrive: Threat Actors Exploit Microsoft Services for C2](https://www.hunters.security/en/blog/veildrive-microsoft-services-malware-c2)[Behind the Great Wall: Void Arachne Targets Chinese-Speaking Users With the Winos 4.0 C-&C Framework](https://www.trendmicro.com/en_us/research/24/f/behind-the-great-wall-void-arachne-targets-chinese-speaking-user.html)[Every Doggo Has Its Day: Unleashing the Xiū Gǒu Phishing Kit](https://www.netcraft.com/blog/doggo-threat-actor-analysis/)[Multiple Vulnerabilities in the Mazda In-Vehicle Infotainment (IVI) System](https://www.zerodayinitiative.com/blog/2024/11/7/multiple-vulnerabilities-in-the-mazda-in-vehicle-infotainment-ivi-system)[Hacker says they banned ‘thousands’ of Call of Duty gamers by abusing anti-cheat flaw](https://techcrunch.com/2024/11/07/hacker-says-they-banned-thousands-of-call-of-duty-gamers-by-abusing-anti-cheat-flaw/)**Intelligence and Information Warfare**[Georgia official asks social media sites to take down Russian disinformation video](https://therecord.media/georgia-fake-voting-video-x-brad-raffensperger)[Chinese researchers build military AI using Meta’s open-source Llama model — ChatBIT allegedly performs at around 90% of the performance of OpenAI GPT-4 LLM](https://www.tomshardware.com/tech-industry/artificial-intelligence/chinese-researchers-build-military-ai-using-metas-open-source-llama-model-chatbit-allegedly-performs-at-around-90-percent-of-the-performance-of-openai-gpt-4-llm)[Joint ODNI, FBI, and CISA Statement on US Election](https://www.cisa.gov/news-events/news/joint-odni-fbi-and-cisa-statement-1)[FBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber Intrusions](https://thehackernews.com/2024/11/fbi-seeks-public-help-to-identify.html)[Canada orders TikTok’s Canadian business to be dissolved but won’t block app](https://apnews.com/article/tiktok-canada-china-f290fed849bcdb26edb165d55b0aa225)[BlueNoroff Hidden Risk -| Threat Actor Targets Macs with Fake Crypto News and Novel Persistence](https://www.sentinelone.com/labs/bluenoroff-hidden-risk-threat-actor-targets-macs-with-fake-crypto-news-and-novel-persistence/)[The Chinese Military Is Weaponizing Facebook’s Open Source AI](https://futurism.com/the-byte/chinese-military-weaponizing-facebook-meta-open-source-ai)**Cybersecurity**[Tracking the FBI’s Most Wanted: ‘RedLine’ Info-Stealer Creator Maxim Rudometov](https://www.osinord.com/post/tracking-the-fbi-s-most-wanted-redline-info-stealer-creator-maxim-rudometov)[Rep. Yvette Clarke on AI-fueled disinformation: ‘We have not protected ourselves in time for this election cycle’](https://therecord.media/rep-yvette-clarke-ai-fueled-disinformation-election-security)[Columbus says ransomware gang stole personal data of 500,000 Ohio residents](https://techcrunch.com/2024/11/04/columbus-says-ransomware-gang-stole-personal-data-of-500000-ohio-residents/)[South Korea fines Meta $15 million for illegally collecting information on Facebook users](https://apnews.com/article/meta-facebook-south-korea-fine-privacy-9a1e9500d0462112c422e0612f1f7085)[Police Freak Out at iPhones Mysteriously Rebooting Themselves, Locking Cops Out](https://www.404media.co/police-freak-out-at-iphones-mysteriously-rebooting-themselves-locking-cops-out/)[Palo Alto Networks warns of potential PAN-OS RCE vulnerability](https://www.bleepingcomputer.com/news/security/palo-alto-networks-warns-of-potential-pan-os-rce-vulnerability/)Follow me on Twitter: [**@securityaffairs**](https://twitter.com/securityaffairs) and [**Facebook**](https://www.facebook.com/sec.affairs) and [Mastodon](https://infosec.exchange/@securityaffairs)[**Pierluigi Paganini**](http://www.linkedin.com/pub/pierluigi-paganini/b/742/559)**(** [**SecurityAffairs**](http://securityaffairs.co/wordpress/)**–** **hacking, newsletter)**
Related Tags:
Sapphire Sleet
COPERNICIUM
NAICS: 213 – Support Activities For Mining
NAICS: 921 – Executive
Legislative
Other General Government Support
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 21 – Mining
Quarrying
Oil And Gas Extraction
NAICS: 519 – Web Search Portals
Libraries
Archives
Other Information Services
NAICS: 517 – Telecommunications
NAICS: 62 – Health Care And Social Assistance
Associated Indicators:
null