Security Affairs
Ubiquiti Patches Critical UniFi OS Flaws Allowing Command Injection and Privilege Escalation|A Hacker Claims 35 GB of Accenture Source Code. The Company discloses the data breach|Telegram-Hosted RedWing Malware Lets Anyone Rent Android Spyware Tools|U.S. CISA adds Adobe ColdFusion, Joomlack Page Builder, Langflow, and JoomShaper SP Page Builder flaws to its Known Exploited Vulnerabilities catalog|CISA Deploys Anthropic’s Mythos AI to Hunt Vulnerabilities in U.S. Government Code|Critical Gitea Docker Bug Under Active Exploitation Exposes Repositories and Secrets|Spanish Police Arrest Man Linked to CARR, Z-Pentest, and NoName057(16)|Hidden Tenda Router Backdoor Grants Admin Access, No Patch Available|AI-Generated Malware Powers New Armored Likho APT Campaign|Januscape: 16-Year-Old Linux KVM Bug Enables Cloud VM Escape Attacks|Adobe ColdFusion flaw CVE-2026-48282 now exploited in the wild|Hidden Web Prompts Trick AI Agents Into Sending Money|Ubiquiti Patches Critical UniFi OS Flaws Allowing Command Injection and Privilege Escalation|A Hacker Claims 35 GB of Accenture Source Code. The Company discloses the data breach|Telegram-Hosted RedWing Malware Lets Anyone Rent Android Spyware Tools|U.S. CISA adds Adobe ColdFusion, Joomlack Page Builder, Langflow, and JoomShaper SP Page Builder flaws to its Known Exploited Vulnerabilities catalog|CISA Deploys Anthropic’s Mythos AI to Hunt Vulnerabilities in U.S. Government Code|Critical Gitea Docker Bug Under Active Exploitation Exposes Repositories and Secrets|Spanish Police Arrest Man Linked to CARR, Z-Pentest, and NoName057(16)|Hidden Tenda Router Backdoor Grants Admin Access, No Patch Available|AI-Generated Malware Powers New Armored Likho APT Campaign|Januscape: 16-Year-Old Linux KVM Bug Enables Cloud VM Escape Attacks|Adobe ColdFusion flaw CVE-2026-48282 now exploited in the wild|Hidden Web Prompts Trick AI Agents Into Sending Money|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 32 – Best of the week from best sources

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from the best sources free for you in your email box. The Rapid Increase in the Sophistication of Exploit Kits The number of Governments using the FinFisher Spyware is increased DARPA is working on ICARUS, the disappearing delivery drone Big […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from the best sources free for you in your email box.

The Rapid Increase in the Sophistication of Exploit Kits
The number of Governments using the FinFisher Spyware is increased
DARPA is working on ICARUS, the disappearing delivery drone
Big Blue lets Chinese government eyeball source code – report
EA Games rubbishes Pastebin breach claim
How to extract PIN from any selfie, is biometrics secure?
WiFi jamming, too easy and cheap to run attacks
Financial Services Roundtable Ad Campaign Urges Congress to Pass CISA
Thousands of Magento websites compromised to serve malware
A young hacker violated the CIA Director’s private AOL email
A new person is leaking confidential documents on the US drone wars
Juan Andres Guerrero-Saade on the Dangers of APT Security Research
Crooks stole €600,000 in MitM attacks on EMV Cards
10-second hack jogs Fitbits into malware-spreading mode
German infosec bureaucrats want mail providers to encrypt
Western Digital self-encrypting hard drives are not secure
German Govt mulls security standards for SOHOpeless routers
Lets Encrypt Free SSL/TLS Certificate Now Trusted by Major Web Browsers
Oracle Patches Java Zero-Day Exploited by Pawn Storm Attackers
Did Microsoft shove Windows 10 down people’s throats?
Businesses Using Millions of insecure SHA-1 Certificates
Wikileaks releases CIA Director John Brennan emails
New attacks on Network Time Protocol can defeat HTTPS and create chaos
Get a VPN to defeat metadata retention is good advice. Sometimes
FBI, US g-men tried to snatch DNA results from a blood-testing biz. What a time to be alive
The Rebirth Of Endpoint Security
Apple Patches Include iOS 9.1 Update, Pangu Jailbreak Fix
WikiLeaks leaks CIA directors private emails – including his nat sec clearance dossier
Network Time Protocol flaws can cause chaos on a global scale
Anons blow Japanese airports off-course in dolphin cull protest
LowLevel04 ransomware exploits Remote Desktop to spread
74% organizations think they will be hit by an APT in the near future
Pawn Storm APT targets MH17 crash investigation
New Joomla release patches a serious SQLi flaw
Snowden, Schrems, safe harbor … its time to rethink privacy policies, says FTC commish
TalkTalk CEO confirmed personally receiving a ransom demand
How to improve Internet security after the disclosure of the Diffie-Hellman flaw
You need just $8,000 to exploit a zero-day in a critical infrastructure
TalkTalk announced hackers have stolen ‘incomplete’ customer bank data

I desire to inform you that Security Affairs is now open to sponsored content.
I’ll offer the opportunity to:
•    Insert banners of various sizes in all the posts on Security Affairs.
•    Publish sponsored posts written by the customers that can include any kind of commercial reference.
•    Arrange a monthly/quarterly/annual campaign (for big customers) to advertise customers’ activities and discoveries.
For more info contact me at pierluigi.paganini@securityaffairs.co
Thanks for supporting Security Affairs.

Email address: Hurry up, subscribe to the newsletter, next Sunday you will receive all the news directly in your inbox.

newsletter

Once again thank you!

Pierluigi Paganini

(Security Affairs – Newsletter, SecurityAffairs)