Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs Malware Newsletter – Round 5

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Unplugging PlugX: Sinkholing the PlugX USB worm botnet   Introducing Gh0stGambit: A Dropper for Deploying Gh0st RAT   Mandrake spyware sneaks onto Google Play again, flying under the radar for two years A Survey of Malware Detection Using […]

Security Affairs malware newsletter 2

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Unplugging PlugX: Sinkholing the PlugX USB worm botnet  
Introducing Gh0stGambit: A Dropper for Deploying Gh0st RAT  
Mandrake spyware sneaks onto Google Play again, flying under the radar for two years
A Survey of Malware Detection Using Deep Learning
ThreatLabz 2024_Ransomware Report  
Phishing targeting Polish SMBs continues via ModiLoader  
BingoMod: The new android RAT that steals money and wipes data  
Unmasking the SMS Stealer: Targeting Several Countries with Deceptive Apps   
BITS and Bytes: Analyzing BITSLOTH, a newly identified backdoor
Increased Activity Against Apache OFBiz CVE-2024-32113
UNC4393 Goes Gently into the SILENTNIGHT  
STARGAZERS GHOST NETWORK
Malicious Inauthentic Falcon Crash Reporter Installer Distributed to German Entity via Spearphishing Website  
SeleniumGreed: Threat actors exploit exposed Selenium Grid services for Cryptomining
StackExchange Abused to Spread Malicious Python Package That Drains Victims Crypto Wallets  
Social Media Malvertising Campaign Promotes Fake AI Editor Website for Credential Theft
Threat Actor Abuses Cloudflare Tunnels to Deliver RATs
Fighting Ursa Luring Targets With Car for Sale

Follow me on LinkedIn and subscribe to the Newsletter to receive it for free every week.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)