Security Affairs
Microsoft fixed Defender flaw RoguePlanet (CVE-2026-50656)|Fake VPN and 7-Zip Apps Turn Victims Into Residential Proxy Nodes|Ubiquiti Patches Critical UniFi OS Flaws Allowing Command Injection and Privilege Escalation|A Hacker Claims 35 GB of Accenture Source Code. The Company discloses the data breach|Telegram-Hosted RedWing Malware Lets Anyone Rent Android Spyware Tools|U.S. CISA adds Adobe ColdFusion, Joomlack Page Builder, Langflow, and JoomShaper SP Page Builder flaws to its Known Exploited Vulnerabilities catalog|CISA Deploys Anthropic’s Mythos AI to Hunt Vulnerabilities in U.S. Government Code|Critical Gitea Docker Bug Under Active Exploitation Exposes Repositories and Secrets|Spanish Police Arrest Man Linked to CARR, Z-Pentest, and NoName057(16)|Hidden Tenda Router Backdoor Grants Admin Access, No Patch Available|AI-Generated Malware Powers New Armored Likho APT Campaign|Januscape: 16-Year-Old Linux KVM Bug Enables Cloud VM Escape Attacks|Microsoft fixed Defender flaw RoguePlanet (CVE-2026-50656)|Fake VPN and 7-Zip Apps Turn Victims Into Residential Proxy Nodes|Ubiquiti Patches Critical UniFi OS Flaws Allowing Command Injection and Privilege Escalation|A Hacker Claims 35 GB of Accenture Source Code. The Company discloses the data breach|Telegram-Hosted RedWing Malware Lets Anyone Rent Android Spyware Tools|U.S. CISA adds Adobe ColdFusion, Joomlack Page Builder, Langflow, and JoomShaper SP Page Builder flaws to its Known Exploited Vulnerabilities catalog|CISA Deploys Anthropic’s Mythos AI to Hunt Vulnerabilities in U.S. Government Code|Critical Gitea Docker Bug Under Active Exploitation Exposes Repositories and Secrets|Spanish Police Arrest Man Linked to CARR, Z-Pentest, and NoName057(16)|Hidden Tenda Router Backdoor Grants Admin Access, No Patch Available|AI-Generated Malware Powers New Armored Likho APT Campaign|Januscape: 16-Year-Old Linux KVM Bug Enables Cloud VM Escape Attacks|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 172 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal 20% discount Kindle Edition Paper Copy Once again thank you! ·      CSE Malware ZLab – Operation Roman Holiday […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal

20% discount

Kindle Edition

Paper Copy

Digging The Deep Web

Once again thank you!

·      CSE Malware ZLab – Operation Roman Holiday – Hunting the Russian APT28
·      FBI: Overall BEC/EAC losses between Oct 2013 and May 2018 result in $12 billion
·      Trump might ask Putin to extradite the 12 Russian intelligence officers
·      Update CSE Malware ZLab – Operation Roman Holiday – Hunting the Russian APT28
·      Code hosting service GitHub can now scan also for vulnerable Python code
·      Director of National Intelligence warns of devastating cyber threat to US infrastructure
·      ZoomEye IoT search engine cached login passwords for tens of thousands of Dahua DVRs
·      Crooks deployed malicious ESLint packages that steal software registry login tokens
·      Cyber Defense Magazine – July 2018 has arrived
·      Researchers show how to manipulate road navigation systems with low-cost devices
·      Trump – Putin meeting: I dont see any reason for Russia to interfere with the US presidential election
·      Cyber espionage campaign targets Samsung service centers in Italy
·      How crooks conduct Money Laundering operations through mobile games
·      QUASAR, SOBAKEN AND VERMIN RATs involved in espionage campaign on Ukraine
·      US Biggest Blood Testing Laboratories LabCorp suffered a security breach
·      ‘IT system issue caused cancellation of British Airways cancelled flights at Heathrow
·      Cisco fixes critical and high severity flaws in Policy Suite and SD-WAN products
·      Expert discovered RoboCent AWS S3 bucket containing US voters records exposed online
·      Thousands of Mega account credentials leaked online, it is credential stuffing
·      Anarchy botmaster builds a botnet of 18,000 Huawei routers in a few hours
·      Experts disclose dangerous flaws in robotic Dongguan Diqee 360 smart vacuums
·      Experts discloses dangerous flaws in robotic Dongguan Diqee 360 smart vacuums
·      Microsoft uncovered and stopped attempts to launch spear-phishing attacks on three 2018 congressional candidates
·      MoneyTaker hacking group stole 1 million US dollars from Russian PIR Bank
·      SingHealth, largest healthcare group in Singapore, suffered a massive data breach
·      Experts discovered Calisto macOS Trojan, the member of Proton RAT family
·      Trump-Putin Meeting was the root cause of a spike of cyber attacks against Finland

 

[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs – Newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]