A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box.—————————————————————————————————————————————————–Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.[Malicious npm packages target Ethereum developers](https://securityaffairs.com/172671/malware/malicious-npm-packages-target-ethereum-developers.html) [US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT](https://securityaffairs.com/172665/intelligence/us-sanctioned-chinese-cybersecurity-firm-linked-flax-typhoon.html) [FireScam Android info-stealing malware supports spyware capabilities](https://securityaffairs.com/172656/malware/firescam-android-malware.html) [Richmond University Medical Center data breach impacted 674,033 individuals](https://securityaffairs.com/172641/data-breach/richmond-university-medical-center-data-breach.html) [Apple will pay $95 Million to settle lawsuit over Siri’s alleged eavesdropping](https://securityaffairs.com/172632/security/apple-will-pay-95-million-to-settle-lawsuit-over-siris-alleged-eavesdropping.html) [LDAPNightmare, a PoC exploit targets Windows LDAP flaw CVE-2024-49113](https://securityaffairs.com/172618/security/ldapnightmare-exploit-cve-2024-49113.html) [Around 3.3 million POP3 and IMAP mail servers lack TLS encryption](https://securityaffairs.com/172600/security/3m-pop3-imap-mail-servers-lack-tls-encryption.html) [A US soldier was arrested for leaking presidential call logs](https://securityaffairs.com/172589/cyber-crime/us-soldier-arrested-for-leaking-presidential-call-logs.html) [DoubleClickjacking allows clickjacking on major websites](https://securityaffairs.com/172572/hacking/doubleclickjacking-clickjacking-on-major-websites.html) [Russian media outlets Telegram channels blocked in European countries](https://securityaffairs.com/172565/security/russian-media-outlets-telegram-channels-blocked-in-eu.html) [Three Russian-German nationals charged with suspicion of secret service agent activity](https://securityaffairs.com/172559/intelligence/russian-german-nationals-charged-secret-service-agent-activity.html) [Lumen reports that it has locked out the Salt Typhoon group from its network](https://securityaffairs.com/172544/apt/lumen-locked-out-salt-typhoon.html) [Proposed updates to HIPAA Security Rule mandate to restore the loss of certain relevant electronic information systems and data within 72 hours](https://securityaffairs.com/172518/breaking-news/hhs-updates-hipaa-security-rule.html) [U.S. Treasury sanctions Russian and Iranian entities for interfering in the presidential election](https://securityaffairs.com/172520/laws-and-regulations/u-s-treasury-sanctioned-russia-and-iran-entities-for-disinformation.html) [Rhode Island ‘s data from health benefits system leaked on the dark web](https://securityaffairs.com/172503/cyber-crime/rhode-island-data-breach.html) [Hacking campaign compromised at least 16 Chrome browser extensions](https://securityaffairs.com/172491/hacking/chrome-browser-extensions-compromise.html) [China-linked actors hacked US Treasury Department](https://securityaffairs.com/172482/intelligence/china-hacked-u-s-treasury-department.html) [An X user claimed a 7-Zip zero-day vulnerability, but 7-Zip’s creator says is a fake](https://securityaffairs.com/172467/hacking/an-x-user-claimed-a-7-zip-zero-day-vulnerability.html) [Cisco states that the second data leak is linked to the one from October](https://securityaffairs.com/172460/data-breach/cisco-second-data-leak-linked-to-october-one.html) [Threat actors attempt to exploit a flaw in Four-Faith routers](https://securityaffairs.com/172450/hacking/four-faith-routers-flaw-exploited.html) [ZAGG disclosed a data breach that exposed its customers’ credit card data](https://securityaffairs.com/172434/data-breach/zagg-credit-card-data-data-breach.html) [China-linked APT Salt Typhoon breached a ninth U.S. telecommunications firm](https://securityaffairs.com/172425/apt/salt-typhoon-breached-ninth-u-s-telco.html)**International Press — Newsletter****Cybercrime**[Cyberhaven Chrome Extension Hack Linked to Widening Supply Chain Campaign](https://www.securityweek.com/cyberhaven-chrome-extension-hack-linked-to-widening-supply-chain-campaign/)[Rhode Islanders’ data was leaked from a cyberattack on state health benefits website](https://apnews.com/article/cybersecurity-breach-data-rhode-island-e4a7298010d59fe6cb095a436f912a5d)[US Army soldier who allegedly stole Trump’s AT-&T call logs arrested](https://www.theregister.com/2025/01/01/us_army_soldier_att_call_logs/)[Atos, contractor for French military and intelligence agencies, dismisses ransomware attack claims](https://therecord.media/atos-dismisses-ransomware-claims#:~:text=Following%20this%20investigation%2C%20Atos%20announced,or%20Atos%20proprietary%20data%20exposed.%E2%80%9D)**Malware**[Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts](https://socket.dev/blog/quasar-rat-disguised-as-an-npm-package)[The Mac Malware of 2024](https://objective-see.org/blog/blog_0x7D.html)[Inside FireScam : An Information Stealer with Spyware Capabilities](https://www.cyfirma.com/research/inside-firescam-an-information-stealer-with-spyware-capabilities/)[Malicious npm Campaign Targets Ethereum Developers with Fake Hardhat Packages](https://socket.dev/blog/malicious-npm-campaign-targets-ethereum-developers)**Hacking**[How to Hack a Drone](https://thecybershow.blogspot.com/2024/12/how-to-hack-drone.html)[Four-Faith Industrial Router CVE-2024-12856 Exploited in the Wild](https://vulncheck.com/blog/four-faith-cve-2024-12856)[Former NSA cyberspy’s not-so-secret hobby: Hacking Christmas lights](https://www.theregister.com/2024/12/25/joyce_christmas_lights/)[On the sixth day of Christmas, an X account gave to me: a fake 7-Zip ACE](https://therecord.media/fake-zero-day-7Zip)[Cyberhaven Extension Compromise](https://secureannex.com/blog/cyberhaven-extension-compromise/)[Cyberhaven’s preliminary analysis of the recent malicious Chrome extension](https://www.cyberhaven.com/engineering-blog/cyberhavens-preliminary-analysis-of-the-recent-malicious-chrome-extension)[DoubleClickjacking: A New Era of UI Redressing](https://www.paulosyibelo.com/2024/12/doubleclickjacking-what.html)[LDAPNightmare: SafeBreach Labs Publishes First Proof-of-Concept Exploit for CVE-2024-49113](https://www.safebreach.com/blog/ldapnightmare-safebreach-labs-publishes-first-proof-of-concept-exploit-for-cve-2024-49113/)**Intelligence and Information Warfare**[US Plans More Actions Against China Over Telecom Hack](https://www.bloomberg.com/news/articles/2024-12-27/us-plans-more-actions-targeting-china-for-salt-typhoon-breach)[China Hacked Treasury Dept. in ‘Major’ Breach, U.S. Says](https://www.nytimes.com/2024/12/30/us/politics/china-hack-treasury.html)[US telco Lumen says its network is now clear of China’s Salt Typhoon hackers](https://techcrunch.com/2024/12/31/another-us-telco-says-its-network-is-now-clear-of-china-backed-salt-typhoon-hackers/)[Three Russian-German Nationals Charged with Espionage for Russian Secret Service](https://thehackernews.com/2025/01/three-russian-german-nationals-charged.html)[China claims ‘world’s first’ military 5G can connect 10,000 robots in any terrain](https://interestingengineering.com/military/china-claims-worlds-first-military-5g-can-connect-10000-robots-in-any-terrain)[Theory of Mind: US military to build AI that predicts adversaries’ next moves](https://interestingengineering.com/military/us-theory-of-mind-ai)[Treasury Sanctions Technology Company for Support to Malicious Cyber Group](https://home.treasury.gov/news/press-releases/jy2769)**Cybersecurity**[AT-&T and Verizon say networks secure after Salt Typhoon breach](https://www.bleepingcomputer.com/news/security/atandt-and-verizon-say-networks-secure-after-salt-typhoon-breach/)[Dirty DAG: New Vulnerabilities in Azure Data Factory’s Apache Airflow Integration](https://unit42.paloaltonetworks.com/azure-data-factory-apache-airflow-vulnerabilities/)[Treasury Sanctions Entities in Iran and Russia That Attempted to Interfere in the U.S. 2024 Election](https://home.treasury.gov/news/press-releases/jy2766)[HIPAA Security Rule Notice of Proposed Rulemaking to Strengthen Cybersecurity for Electronic Protected Health Information](https://www.hhs.gov/hipaa/for-professionals/security/hipaa-security-rule-nprm/factsheet/index.html)[Telegram blocks Russian state-owned media channels in several EU countries](https://kyivindependent.com/telegram-blocks-russian-state-owned-media-channels-in-eu/)[Large language models can do jaw-dropping things. But nobody knows exactly why](https://www.technologyreview.com/2024/03/04/1089403/large-language-models-amazing-but-nobody-knows-why/)[Apple to Pay $95 Million to Settle Lawsuit Accusing Siri of Snoopy Eavesdropping](https://www.securityweek.com/apple-to-pay-95-million-to-settle-lawsuit-accusing-siri-of-snoopy-eavesdropping/)[US sanctions China’s Integrity Technology over alleged hacking sweep](https://www.reuters.com/technology/cybersecurity/us-issues-cybersecurity-sanctions-against-chinas-integrity-technology-2025-01-03/)[Meta’s AI Profiles Are Indistinguishable From Terrible Spam That Took Over Facebook](https://www.404media.co/metas-ai-profiles-are-indistinguishable-from-terrible-spam-that-took-over-facebook/)Follow me on Twitter: [**@securityaffairs**](https://twitter.com/securityaffairs) and [**Facebook**](https://www.facebook.com/sec.affairs) and [Mastodon](https://infosec.exchange/@securityaffairs)[**Pierluigi Paganini**](http://www.linkedin.com/pub/pierluigi-paganini/b/742/559)**(** [**SecurityAffairs**](http://securityaffairs.co/wordpress/)**–** **hacking, newsletter)**
Related Tags:
CVE-2024-49113
NAICS: 521 – Monetary Authorities-central Bank
NAICS: 44 – Retail Trade – Auto
Food
Home
NAICS: 921 – Executive
Legislative
Other General Government Support
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 923 – Administration Of Human Resource Programs
NAICS: 334 – Computer And Electronic Product Manufacturing
NAICS: 519 – Web Search Portals
Libraries
Archives
Other Information Services
NAICS: 517 – Telecommunications
Associated Indicators: