Security Affairs
Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 257

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs Coronavirus-themed attacks March 15 – March 21, 2020 Google addresses high severity bugs in Chrome Keepnet Labs accidentally exposed an unprotected database with 5 Billion previously leaked records Security firm accidentally exposed an unprotected database with 5 Billion […]

newsletter

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

Coronavirus-themed attacks March 15 – March 21, 2020
Google addresses high severity bugs in Chrome
Keepnet Labs accidentally exposed an unprotected database with 5 Billion previously leaked records
Security firm accidentally exposed an unprotected database with 5 Billion previously leaked records
538 Million Weibo users records being sold on Dark Web
Botnet operators target multiple zero-day flaws in LILIN DVRs
Coronavirus-themed campaign delivers a new variant of Netwalker Ransomware
Microsoft warns of targeted attacks exploiting Windows zero-day flaws
Operation Pangea: Europol dismantles criminal gangs selling coronavirus medicine, surgical masks
The University of Utah Health discloses security breach
Adobe addressed a critical vulnerability in Adobe Creative Cloud App that allows deleting files
Fortune 500 tech giant General Electric (GE) discloses data breach after Canon hack
MalwareBazaar – welcome to the abuse-ch malware repository
New York Attorney General asks domain registrars to crack down on coronavirus scam sites
WildPressure, a new APT group targets the Middle Easts industrial sector
China-linked APT41 group exploits Citrix, Cisco, Zoho flaws
Fake Coronavirus Finder spread Ginp Mobile Banker
Tor Browser 9.0.7 addresses a flaw that could allow unmasking Tor users
Tupperware website has been compromised with a payment card skimmer
FBI shuts down the Russian-based hacker platform DEER.IO
Hackers hijack D-Link and Linksys routers to point users to coronavirus-themed sites serving malware
Operation Poisoned News: Hong Kong iOS users targeted with watering hole attacks
Stealing videos from VLC
WordPress WP-VCD malware delivered via pirated Coronavirus plugins
0patch releases free unofficial patches for Windows 0days exploited in the wild
A missing authorization check in WordPre WPvivid plugin that can lead to the exposure of the database and all files
Google issued 40,000 alerts of State-Sponsored attacks in 2019
New financially motivated attacks in Western Europe traced to Russian-speaking threat actors
Ryuk Ransomware operators continue to target hospitals during COVID19 outbreak
AMD admits hacker stole source code files related to its GPUs
Critical buffer overflow in CODESYS allows remote code execution
Hackers target zero-day flaws in enterprise Draytek network devices
[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – newsletter, hacking)

[adrotate banner=”5″]

[adrotate banner=”13″]