Security Affairs
JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 174 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal 20% discount Kindle Edition Paper Copy Once again thank you! ·      Mysterious snail mail from China sent to […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal

20% discount

Kindle Edition

Paper Copy

Digging The Deep Web

Once again thank you!

·      Mysterious snail mail from China sent to US agencies includes Malware-Laden CD
·      Security bug in Swann IoT Camera allowed to access video feeds
·      Underminer Exploit Kit spreading Bootkits and cryptocurrency miners
·      FELIXROOT Backdoor is back in a new fresh spam campaign
·      KICKICO security breach – hackers stole over $7.7 million worth of KICK tokens
·      Tens of flaws in Samsung SmartThings Hub expose smart home to attack
·      Titan Security Keys- Google announced USB-based FIDO U2F Keys
·      A new sophisticated version of the AZORult Spyware appeared in the wild
·      Dixons Carphone Data Breach discovered in June affected 10 Million customers
·      Fileless PowerGhost cryptocurrency miner leverages EternalBlue exploit to spread
·      Ransomware attack against COSCO spread beyond its US network to Americas
·      Facebook reported and blocked attempts to influence campaign ahead of midterms US elections
·      Hundreds of apps removed from Google Play store because were carrying Windows malware
·      Reddit discloses a data breach, a hacker accessed user data
·      SamSam Ransomware operators earned more than US$5.9 Million since late 2015
·      Ten years ago someone breached into a server of the Yale University
·      Alleged Iran-linked APT group RASPITE targets US electric utilities
·      Amnesty International employee targeted with NSO group surveillance malware
·      Analyzing the Telegram-based Android remote access trojan HeroRAT
·      Three members of FIN7 (Carbanak) gang charged with stealing 15 million credit cards
·      CVE-2018-14773 Symfony Flaw expose Drupal websites to hack
·      Google introduced G Suite alerts for state-sponsored attacks
·      Hundreds of thousands MikroTik Routers involved in massive Coinhive cryptomining campaign
·      Industrial Sector targeted in surgical spear-phishing attacks
[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs – Newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]