Security Affairs
JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 170 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal 20% discount Kindle Edition Paper Copy Once again thank you! ·      Data Broker Exactis data breach, one of […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal

20% discount

Kindle Edition

Paper Copy

Digging The Deep Web

Once again thank you!

·      Data Broker Exactis data breach, one of the biggest ever, exposes millions of Americans
·      Security issues in the LTE standard expose billions on mobile users to attacks
·      Zerodium offers up to $500,000 for Linux Zero-Day exploits
·      A sample of CryptoCurrency Clipboard Hijackers monitors 2.3 Million Bitcoin addresses
·      NSA began deleting all call detail records (CDRs) acquired since 2015
·      RIG Exploit Kit operators leverage PROPagate Injection Technique to deliver Miner
·      Trezor users targeted by phishing attacks, experts blame DNS Poisoning or BGP Hijacking
·      A Samsung Texting App bug is sending random photos to contacts
·      Facebook is notifying 800,000 users affected by a blocking bug
·      Iranian Charming Kitten ATP group poses as Israeli cybersecurity firm in phishing campaign
·      Microsoft revealed that 2 Zero-Days found in March were part of a cyber weapon in an early development stage
·      Rowhammer Evolves into RAMpage Exploit, Targeting Android Phones Since 2012
·      The Social network giant Facebook confirms it shared data with 61 tech firms after 2015
·      Adware already infected at least 78000 Fortnite Players
·      Huawei enterprise and broadcast products have a crypto bug. Fix it now!
·      Siemens warns of several flaws affecting Central Plant Clocks
·      The GandCrab ransomware V4 appears in the threat landscape
·      Crooks leverage obfuscated Coinhive shortlink in a large crypto-mining operation
·      New Smoke Loader campaign aims at stealing multiple credentials from many applications
·      Thunderbird Version 52.9 addresses several issues, including the EFAIL flaw
·      Why Banning Risks to Cybersecurity Doesnt Actually Improve Cybersecurity
·      Chinese hackers breached into systems at Australian National University … and are still there
·      Google July 2018 Android patches fixes critical vulnerabilities
·      Hamas cyber-operatives lure Israeli soldiers to spyware hidden in tainted apps
·      NSO Group ex-employee arrested for attempting to sell phone Hacking Tool For $50 Million
·      Critical flaws patched in ISP Advanced Digital Broadcast Broadband devices
·      New Rakhni variant could infect systems with either a ransomware or a miner

 

[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs – Newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]