Security Affairs
JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 191 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal 20% discount Kindle Edition Paper Copy Once again thank you! ·      Very trivial Spotify phishing campaign uncovered by […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal

20% discount

Kindle Edition

Paper Copy

Digging The Deep Web

Once again thank you!

·      Very trivial Spotify phishing campaign uncovered by experts
·      Experts found a new powerful modular Linux cryptominer
·      Hacker stole $1m from Silicon Valley executive via SIM swap
·      Linux Kernel is affected by two DoS vulnerabilities still unpatched
·      Ransomware attack disrupted emergency rooms at Ohio Hospital System
·      When Do You Need to Report a Data Breach?
·      Experts demonstrate how to exfiltrate data using smart bulbs
·      Malicious developer distributed tainted version of Event-Stream NodeJS Module to steal Bitcoins
·      The SLoad Powershell malspam is expanding to Italy
·      UK Parliament seized confidential Facebook docs to investigate its data protection policies.
·      British MP: Facebook was aware about Russian activity at least since 2014
·      FBI along with security firms dismantled 3ve Ad Fraud Operation
·      Initial patch for Webex Meetings flaw WebExec was incomplete. Cisco fixed it again
·      Uber fined nearly $1.2 Million by Dutch and UK Data Protection Authorities over data breach
·      AccuDoc Data Breach impacted 2.6 Million Atrium Health patients
·      Dell data breach – Dell forces password reset after the incident
·      Dissecting the Mindscrew-Powershell Obfuscation
·      Knock-Knock Docker!! Will you let me in? Open API Abuse in Docker Containers
·      U.S. DoJ charges Iranian duo over SamSam Ransomware activity
·      327 million Marriott guests affected in Starwood Data Breach
·      New PowerShell-based Backdoor points to MuddyWater
·      ETERNALSILENCE – 270K+ devices vulnerable to UPnProxy Botnet build using NSA hacking tools
·      MITRE evaluates Enterprise security products using the ATT&CK Framework
[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(Security Affairs – Newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]