Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 136 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Once again thank you! ·      Flaws in IEEE P1735 electronics standard expose intellectual property ·      Popular Anime crunchyroll.com hijacked to distribute a keylogger ·      Security Affairs newsletter Round 135 – News of the week ·      The NIC Asia Bank […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Once again thank you!

·      Flaws in IEEE P1735 electronics standard expose intellectual property
·      Popular Anime crunchyroll.com hijacked to distribute a keylogger
·      Security Affairs newsletter Round 135 – News of the week
·      The NIC Asia Bank is the last victim of the SWIFT hackers
·      Hackers leak WhatsApp screenshots and intimate photos of WWE Diva Paige
·      KRACK Detector is a tool to detect and prevent KRACK attacks in your network
·      Malware signed with stolen Digital code-signing certificates continues to bypass security software
·      Paradise Papers were the result of the hack of external attackers
·      The GIBON Ransomware appears in the threat landscape
·      Cisco patches a DoS vulnerability in IOE XE operating system
·      German users exploit a Twitter bug to post 30,000-character tweet
·      One Third of The Internet Has Seen a DDoS Attack In The Past Two Years
·      Owners have found a built-in Keylogger in MantisTek GK2 Keyboards that send some data to China
·      Vietnamese APT32 group is one of the most advanced APTs in the threat landscape
·      A regular GitHub user accidentally triggered a flaw Ethereum Parity Wallet that locked up $280 million in Ether
·      Android Security Bulletin—November 2017 – Google addresses critical flaws and high-risk KRACK vulnerabilities in Android
·      Google Syzkaller fuzzer allowed to discover several flaws in Linux USB Subsystem
·      Symantec uncovered a new APT, the cyber espionage Sowbug group
·      Experts can hack most CPUs since 2008 over USB by triggering Intel Management Engine flaw
·      Hack the hackers. Watcha out the NEW IPCAM EXPLOIT, it is a scam!
·      Russia-Linked APT28 group observed using DDE attack to deliver malware
·      Vault 8 – WikiLeaks releases source code for CIA Hive malware control platform
·      #AskACISO Interview with Paul Rivers, CISO at Yale University
·      Experts explain the Return on Investments in the cybercriminal underground
·      Ordinypt is a wiper disguised as ransomware that targets German users
·      TOASTAMIGO – the first known strain of malware that uses the Toast Overlay exploit
·      #AVGater attack abuse Quarantine vulnerabilities for privilege escalation
·      Equifax earnings release: Security breach related expenses cost $87.5 Million in Q3
·      Ethereum Parity Wallet freeze that locked up $280 million in Ether was a hack, claims Cappasity

 

[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs – Newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]