JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 157 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Let me inform you that my new book, “Digging in the Deep Web” is online Kindle Edition Paper Copy Once again thank you! ·      Airbnb China will share hosts information with the government ·      Any social media […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Let me inform you that my new book, “Digging in the Deep Web” is online

Kindle Edition

Paper Copy

Digging The Deep Web

Once again thank you!

·      Airbnb China will share hosts information with the government
·      Any social media accounts to declare? Visa applicants would have to declare them
·      Apple macOS issues reveal passwords for APFS encrypted volumes in plaintext
·      Philippine central bank has thrown an alert after SWIFT hackers hit Malaysia central bank
·      After Cambridge Analytica scandal Facebook announces Election security Improvements
·      HiddenMiner Android Cryptocurrency miner can brick your device
·      MITRE is evaluating a service dubbed ATT&CK for APT detection
·      VPNs & Privacy Browsers leak users’ IPs via WebRTC
·      70% of VPN Chrome Extensions Leak Your DNS
·      Fin7 hackers stole 5 Million payment card data from Saks Fifth Avenue and Lord & Taylor Stores
·      Google to banish cryptocurrency mining extensions from official Chrome Web Store
·      Grindr shared people HIV status with other companies
·      Project Kalamata – Apple will replace Intel processors in Macs with its custom designed chips
·      KevDroid Android RAT can steal private data and record phone calls
·      Many natural gas pipeline operators in the U.S. Gas affected by cyberattack
·      Microsoft issued out-of-band patch to fix CVE-2018-0986 Malware Protection Engine flaw
·      Panera Bread left millions of customer records exposed online for months
·      Thousands of compromised Magento websites delivering Malware
·      Facebook: Cambridge Analytica scandal affected 87 Million users
·      North Korea-Linked Lazarus APT suspected for online Casino assault
·      OSX_OCEANLOTUS.D, a new macOS backdoor linked to APT 32 group
·      Zuckerberg admitted public data of its 2.2 billion users has been scraped by Third-party entities
·      A Remote Code Execution Vulnerability found in the Spring Framework. Upgrade it now!
·      Cisco Smart Install Protocol misuse could expose critical infrastructure to attacks
·      VirusTotal presents its new Android Droidy sandbox
·      [24]7.ai Payment Card Breach affected major firms, including Best Buy, After Delta Air Lines and Sears Holdings
·      130,000 Finnish user data exposed in third largest data breach ever happened in the country
·      After Cambridge Analytica Facebook COO Sandberg admits other possible misuses
·      New variant of the Mirai Botnet targets the financial industry
[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs – Newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]