Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 32

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Malicious packages deepseeek and deepseekai published in Python Package Index   Coyote Banking Trojan: A Stealthy Attack via LNK Files  The Mac Malware of 2024  Take My Money: OCR Crypto Wallet Thieves on Google Play and App […]

Security Affairs malware newsletter 2

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Malicious packages deepseeek and deepseekai published in Python Package Index  

Coyote Banking Trojan: A Stealthy Attack via LNK Files 

The Mac Malware of 2024 

Take My Money: OCR Crypto Wallet Thieves on Google Play and App Store  

AsyncRAT Reloaded: Using Python and TryCloudflare for Malware Delivery Again  

Go Supply Chain Attack: Malicious Package Exploits Go Module Proxy Caching for Persistence  

Rat Race: ValleyRAT Malware Targets Organizations with New Delivery Techniques 

35% Year-over-Year Decrease in Ransomware Payments, Less than Half of Recorded Incidents Resulted in Victim Payments  

Persistent Threats from the Kimsuky Group Using RDP Wrapper

macOS FlexibleFerret | Further Variants of DPRK Malware Family Unearthed

Silent Lynx APT Targets Various Entities Across Kyrgyzstan & Neighbouring Nations 

Lazarus Group Targets Organizations with Sophisticated LinkedIn Recruiting Scam

Target Attack Backdoor Malware Analysis and Attribution

ClarAVy: A Tool for Scalable and Accurate Malware Family Labeling

Probing Malware Propagation Model with Variable Infection Rates Under Integer, Fractional, and Fractal–Fractional OrdersSemantic Entanglement-Based Ransomware Detection via Probabilistic Latent Encryption Mapping

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, malware)