A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.—————————————————————————————————————————————————–Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.[A botnet exploits e GeoVision zero-day to compromise EoL devices](https://securityaffairs.com/171067/malware/ddos-botnet-exploits-geovision-zero-day.html) [Palo Alto Networks confirmed active exploitation of recently disclosed zero-day](https://securityaffairs.com/171057/hacking/palo-alto-networks-zero-day-exploitation.html) [NSO Group used WhatsApp exploits even after Meta-owned company sued it](https://securityaffairs.com/171047/security/nso-group-used-whatsapp-exploits-even-after-meta-owned-company-sued-it.html) [Glove Stealer bypasses Chrome’s App-Bound Encryption to steal cookies](https://securityaffairs.com/171034/malware/glove-stealer-bypasses-chromes-app-bound-encryption.html) [Bitfinex hacker Ilya Lichtenstein was sentenced to 5 years in prison](https://securityaffairs.com/171029/cyber-crime/bitfinex-hacker-was-sentenced-to-5-years-in-prison.html) [U.S. CISA adds Palo Alto Networks Expedition bugs to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/171012/security/u-s-cisa-adds-palo-alto-networks-expedition-bugs-known-exploited-vulnerabilities-catalog.html) [Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices](https://securityaffairs.com/170995/iot/cve-2024-10914-d-link-nas-flaw-exploited.html) [China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials](https://securityaffairs.com/170981/intelligence/china-linked-threat-actors-spied-on-u-s-gov-officials.html) [Bitdefender released a decryptor for the ShrinkLocker ransomware](https://securityaffairs.com/170934/cyber-crime/shrinklocker-ransomware-decryptor.html) [China’s Volt Typhoon botnet has re-emerged](https://securityaffairs.com/170872/apt/volt-typhoon-botnet-has-re-emerged.html) [Zoom addressed two high-severity issues in its platform](https://securityaffairs.com/170861/security/zoom-fixed-two-high-severity-flaws.html) [Microsoft Patch Tuesday security updates for November 2024 fix two actively exploited zero-days](https://securityaffairs.com/170851/hacking/microsoft-patch-tuesday-november-2024.html) [Ahold Delhaize experienced a cyber incident affecting several of its U.S. brands](https://securityaffairs.com/170840/security/ahold-delhaize-cyber-incident-u-s-brands.html) [A cyberattack on payment systems blocked cards readers across stores and gas stations in Israel](https://securityaffairs.com/170823/hacking/cyberattack-payment-systems-israel.html) [Apple indeed added a feature called ‘inactivity reboot’ in iOS 18.1 that reboots locked devices](https://securityaffairs.com/170824/security/apple-feature-inactivity-reboot-ios-18-1.html) [Ymir ransomware, a new stealthy ransomware grow in the wild](https://securityaffairs.com/170814/malware/ymir-ransomware-analysis.html) [Amazon discloses employee data breach after May 2023 MOVEit attacks](https://securityaffairs.com/170804/data-breach/amazon-employee-data-breach-may-2023-moveit-attacks.html) [A new fileless variant of Remcos RAT observed in the wild](https://securityaffairs.com/170791/security/a-new-fileless-variant-of-remcos-rat-phishing.html) [A surge in Pro-Russia cyberattacks after decision to monitor North Korean Troops in Ukraine](https://securityaffairs.com/170779/hacking/south-korea-claims-pro-russia-actors-ddos-attacks.html) [U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers](https://securityaffairs.com/170737/hacking/u-s-agency-limit-phone-use-due-to-salt-typhoon-hack.html)**International Press — Newsletter****Cybercrime**[Amazon confirms employee data stolen after hacker claims MOVEit breach](https://techcrunch.com/2024/11/11/amazon-confirms-employee-data-stolen-after-hacker-claims-moveit-breach/)[Bitcoin Fog Founder Sentenced to 12 Years for Cryptocurrency Money Laundering](https://thehackernews.com/2024/11/bitcoin-fog-founder-sentenced-to-12.html)[A new way we’re helping others track frauds and scams online](https://blog.google/technology/safety-security/a-new-way-were-helping-others-track-frauds-and-scams-online/)[An Interview With the Target -& Home Depot Hacker](https://krebsonsecurity.com/2024/11/an-interview-with-the-target-home-depot-hacker/)[Bitfinex Hacker Sentenced in Money Laundering Conspiracy Involving Billions in Stolen Cryptocurrency](https://www.justice.gov/opa/pr/bitfinex-hacker-sentenced-money-laundering-conspiracy-involving-billions-stolen)[Bitfinex Hacker Sentenced in Money Laundering Conspiracy Involving Billions in Stolen Cryptocurrency](https://www.justice.gov/opa/pr/bitfinex-hacker-sentenced-money-laundering-conspiracy-involving-billions-stolen)**Malware**[New Campaign Uses Remcos RAT to Exploit Victims](https://www.fortinet.com/blog/threat-research/new-campaign-uses-remcos-rat-to-exploit-victims)[Bengal cat lovers in Australia get psspsspss’d in Google-driven Gootloader campaign](https://news.sophos.com/en-us/2024/11/06/bengal-cat-lovers-in-australia-get-psspsspssd-in-google-driven-gootloader-campaign/)[Glove Stealer: Leveraging IElevator to Bypass App-Bound Encryption -& Steal Sensitive Data](https://www.gendigital.com/blog/news/innovation/glove-stealer)[Ymir: new stealthy ransomware in the wild](https://securelist.com/new-ymir-ransomware-found-in-colombia/114493/)[Botnet exploits GeoVision zero-day to install Mirai malware](https://www.bleepingcomputer.com/news/security/botnet-exploits-geovision-zero-day-to-install-mirai-malware/)**Hacking**[Seoul accuses pro-Kremlin hackers of attacking websites over decision to monitor North Korean troops in Ukraine](https://therecord.media/seoul-accuses-pro-kremlin-hackers-of-attacking-websites-ukraine)[Massive MOVEit Vulnerability Breach: Hacker Leaks Employee Data from Amazon, McDonald’s, HSBC, HP, and Potentially 1000+ Other Companies](https://www.infostealers.com/article/massive-moveit-vulnerability-breach-hacker-leaks-employee-data-from-amazon-mcdonalds-hsbc-hp-and-potentially-1000-other-companies/)[DDoS cyberattack temporarily blocks Israeli credit card payments](https://www.timesofisrael.com/ddos-cyberattack-temporarily-blocks-israeli-credit-card-payments/)[GoIssue — The Tool Behind Recent GitHub Phishing Attacks](https://slashnext.com/blog/goissue-github-phishing-attacks/)[Fault Injection — Down the Rabbit Hole](https://security.humanativaspa.it/fault-injection-down-the-rabbit-hole/)[Exploiting a Quarantine UAF Mitigation on a Custom Allocator Challenge](https://blog.hacktivesecurity.com/index.php/2024/11/12/exploiting-a-quarantine-uaf-mitigation-on-a-custom-allocator-challenge/)[Command Injection Vulnerability in name parameter for D-Link NAS](https://netsecfish.notion.site/Command-Injection-Vulnerability-in-name-parameter-for-D-Link-NAS-12d6b683e67c80c49ffcc9214c239a07)[PAN-OS Firewall Vulnerability Under Active Exploitation — IoCs Released](https://thehackernews.com/2024/11/pan-os-firewall-vulnerability-under.html)**Intelligence and Information Warfare**[U.S. Agency Warns Employees About Phone Use Amid Ongoing China Hack](https://www.wsj.com/us-news/u-s-agency-warns-employees-about-phone-use-amid-ongoing-china-hack-dd459273)[APT Actors Embed Malware within macOS Flutter Applications](https://www.jamf.com/blog/jamf-threat-labs-apt-actors-embed-malware-within-macos-flutter-applications/)[The Botnet is Back: SSC STRIKE Team Uncovers a Renewed Cyber Threat](https://securityscorecard.com/blog/botnet-is-back-ssc-strike-team-uncovers-a-renewed-cyber-threat/)[Iranian ‘Dream Job’ Campaign 11.24](https://www.clearskysec.com/irdreamjob24/)[Hamas-affiliated Threat Actor WIRTE Continues its Middle East Operations and Moves to Disruptive Activity](https://research.checkpoint.com/2024/hamas-affiliated-threat-actor-expands-to-disruptive-activity/)[CVE-2024-43451: A New Zero-Day Vulnerability Exploited in the wild](https://www.clearskysec.com/0d-vulnerability-exploited-in-the_wild/)[Joint Statement from FBI and CISA on the People’s Republic of China (PRC) Targeting of Commercial Telecommunications Infrastructure](https://content.govdelivery.com/accounts/USDHSCISA/bulletins/3c1b400)[Malware Spotlight: A Deep-Dive Analysis of WezRat](https://research.checkpoint.com/2024/wezrat-malware-deep-dive/)**Cybersecurity**[iOS 18.1 added a new ‘Inactivity Reboot’ security feature for iPhone](https://9to5mac.com/2024/11/11/ios-18-1-inactivity-reboot-iphone/)[The November 2024 Security Update Review](https://www.securityweek.com/new-ios-security-feature-reboots-devices-to-protect-user-data-reports/)[CISA Flags Two Actively Exploited Palo Alto Flaws; New RCE Attack Confirmed](https://thehackernews.com/2024/11/cisa-flags-critical-palo-alto-network.html)[Pregnancy Tracking App ‘What to Expect’ Refuses to Fix Issue that Allows Full](https://www.404media.co/pregnancy-tracking-app-what-to-expect-refuses-to-fix-issue-that-allows-full-account-takeover-2/)[New Apple security feature reboots iPhones after 3 days, researchers confirm](https://techcrunch.com/2024/11/14/new-apple-security-feature-reboots-iphones-after-3-days-researchers-confirm/)[NSO Group used WhatsApp exploits after the messaging app sued the spyware developer, court filing says](https://cyberscoop.com/nso-group-used-whatsapp-exploits-after-the-messaging-app-sued-the-spyware-developer-court-filing-says/)[Insights and Current Gaps in Open-Source LLM Vulnerability Scanners: A Comparative Analysis](https://www.linkedin.com/pulse/insights-current-gaps-open-source-llm-vulnerability-luca-sambucci-qsdrf/)Follow me on Twitter: [**@securityaffairs**](https://twitter.com/securityaffairs) and [**Facebook**](https://www.facebook.com/sec.affairs) and [Mastodon](https://infosec.exchange/@securityaffairs)[**Pierluigi Paganini**](http://www.linkedin.com/pub/pierluigi-paganini/b/742/559)**(** [**SecurityAffairs**](http://securityaffairs.co/wordpress/)**–** **hacking, newsletter)**
Related Tags:
CVE-2024-10914
NAICS: 423 – Merchant Wholesalers
Durable Goods
NAICS: 42 – Wholesale Trade
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 335 – Electrical Equipment
Appliance
Component Manufacturing
NAICS: 72 – Accommodation And Food Services
NAICS: 334 – Computer And Electronic Product Manufacturing
NAICS: 519 – Web Search Portals
Libraries
Archives
Other Information Services
NAICS: 722 – Food Services And Drinking Places
Associated Indicators: