Security Affairs
Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 236

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog. A new Mac malware dubbed Tarmac has been distributed via […]

newsletter

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog.

A new Mac malware dubbed Tarmac has been distributed via malvertising campaigns
Alabama Hospital chain paid ransom to resume operations after ransomware attack
Charming Kitten Campaign involved new impersonation methods
Imperva explains how hackers stole AWS API Key and accessed to customer data
Is Emotet gang targeting companies with external SOC?
Privacy advocates criticize Apple for sharing some users browsing data with Tencent
Talos experts found 11 flaws in Schneider Electric Modicon Controllers
Click2Mail suffered a data breach that potentially impacts 200,000 registrants
Global Shipping and mailing services firm Pitney Bowes hit by ransomware attack
sudo flaw allows any users to run commands as Root on Linux
Winnti Group was planning a devastating supply-chain attack against Asian manufacturer
Adobe out-of-band security updates address 82 flaws in 3 products
Approaching the Reverse Engineering of a RFID/NFC Vending Machine
Chinese-speaking cybercrime gang Rocke changes tactics
Signature update for Symantec Endpoint protection crashed many device
Critical and high-severity flaws addressed in Cisco Aironet APs
Cryptocurrency miners infected more than 50% of the European airport workstations
Graboid the first-ever Cryptojacking worm that targets Docker Hub
International operation dismantled largest Dark Web Child abuse site
M6 Group, largest France private multimedia group, hit by ransomware attack
China-linked cyberspies Turbine PANDA targeted aerospace firms for years
Pitney Bowes revealed that its systems were infected with Ryuk Ransomware
Researcher released PoC exploit code for CVE-2019-2215 Android zero-day flaw
Systems at Ingredients provider Ingredion infected with a Malware
Trojanized Tor Browser targets shoppers of Darknet black marketplaces
A critical Linux Wi-Fi bug could be exploited to fully compromise systems
Emsisoft released a free decryption tool for the STOP (Djvu) ransomware
Hundreds of millions of UC Browser Android Users Exposed to MiTM Attacks. Again.
[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – iCloud, zero-day)

[adrotate banner=”5″]

[adrotate banner=”13″]