Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 309

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. Clop Ransomware operators plunder US universities Malware attack on Applus blocked vehicle inspections in some US states 2,5M+ users can check whether their data were exposed in Facebook data leak […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

Clop Ransomware operators plunder US universities
Malware attack on Applus blocked vehicle inspections in some US states
2,5M+ users can check whether their data were exposed in Facebook data leak
33.4% of ICS computers hit by a cyber attack in H2 2020
Firmware attacks, a grey area in cybersecurity of organizations
Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks
Experts discovered a privilege escalation issue in popular Umbraco CMS
Experts found critical flaws in Rockwell FactoryTalk AssetCentre
SAP systems are targeted within 72 hours after updates are released
This service allows checking if your mobile is included in the Facebook leak
Crooks use Telegram bots and Google Forms to automate phishing
European Commission and other institutions were hit by a major cyber-attack
Gigaset Android smartphones infected with malware after supply chain attack
New Cring ransomware deployed targeting unpatched Fortinet VPN devices
Pwn2Own 2021 Day 1 – participants earned more than $500k
Cisco fixed multiple flaws in SD-WAN vManage Software, including a critical RCE
Man arrested after hired a hitman on the dark web
Moodle flaw exposed users to account takeover
Pwn2Own 2021 Day 2 – experts earned $200K for a zero-interaction Zoom exploit
Scraped data of 500 million LinkedIn users being sold online, 2 million records leaked as proof
Swarmshop – What goes around comes around: hackers leak other hackers data online
User database was also hacked in the recent hack of PHP ‘s Git Server
330K stolen payment cards and 895K stolen gift cards sold on dark web
CISA releases post-compromise tool Aviary to review Microsoft 365
Cisco will not release updates to fix critical RCE flaw in EoF Business Routers
Pwn2Own 2021: participants earned $1,2M of the $1.5M prize pool
Zerodium will pay $300K for WordPress RCE exploits
Crooks abuse website contact forms to deliver IcedID malware
Hackers compromised APKPure client to distribute infected Apps
This man was planning to kill 70% of Internet in a bomb attack against AWS

If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]