Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 133 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Once again thank you! ·      ENISA – CTI – EU | Bonding EU Cyber Threat Intelligence ·      Flaws in Siemens Building Automation Controllers open to hack. Fix them asap ·      Hacker interview – Speaking with ICEMAN: Banks […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Once again thank you!

·      ENISA – CTI – EU | Bonding EU Cyber Threat Intelligence
·      Flaws in Siemens Building Automation Controllers open to hack. Fix them asap
·      Hacker interview – Speaking with ICEMAN: Banks holes like in Cheese
·      Security Affairs newsletter Round 132 – News of the week
·      Swedish transport agencies targeted in DDoS cyber attacks
·      Iranian hackers compromised the UK leader Theresa Mays email account along with other 9,000 emails
·      Linux kernel affected by a local privilege escalation vulnerability
·      Pizza Hut notifies card breach while users have already reported fraudulent transactions
·      Wifi networks are vulnerable to hacking WPA KRACK attack
·      Wifi networks are vulnerable to WPA KRACK attack
·      BlackOasis APT leverages new Flash zero-day exploit to deploy FinSpy
·      Cyberespionage group stolen Microsoft vulnerabilities DB back in 2013
·      Even With The Best Email Spoofing Defences in The World, HMRC is Spoofed
·      ROCA vulnerability (CVE-2017-15361) allows attackers to recover users Private RSA Keys
·      BAE Systems report links Taiwan heist to North Korean LAZARUS APT
·      CUTLET MAKER ATM malware offered for 5000 USD on darknet forum
·      Google introduces new Advanced Protection feature to protect its users
·      South Africa – About 30-million identity numbers and other personal and financial information leaked online
·      The Necurs botnet is back spreading a downloader with new interesting features
·      Cyber espionage – China-Linked group leverages recently patched .NET Flaw
·      Microsoft provides details of a code execution vulnerability in Chrome
·      October 2017 Oracle Critical Patch Update addresses 252 Vulnerabilities
·      Threat actors started scanning for SSH Keys on websites
·      A new Mirai-Like IoT Botnet is growing in a new mysterious campaign
·      Cisco addresses a critical vulnerability in Cloud Services Platform (CSP)
·      Google launched Google Play Security Reward bug bounty program to protect apps in Play Store
·      URSNIF spam campaign expose new macro evasion tactics
·      Watch out! European Consumer Organisation warns of some kid GPS smartwatches have security flaws
·      Assemblyline – Canadas CSE intelligence Agency releases its malware analysis tool
·      Necurs botnet now spreading the Locky Ransomware via DDE Attacks
·      Proton malware spreading through supply-chain attack, victims should wipe their Macs
[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs – Newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]