Security Affairs
Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 341

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. U.S. banking regulators order banks to notify cybersecurity incidents in 36 hours Study reveals […]

newsletter

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

U.S. banking regulators order banks to notify cybersecurity incidents in 36 hours
Study reveals top 200 most common passwords
The newer cybercrime triad: TrickBot-Emotet-Conti
Tor Project calls to bring more than 200 obfs4 bridges online by December
Canadian teenager stole $36 Million in cryptocurrency via SIM Swapping
California Pizza Kitchen discloses a data breach
North Korea-linked TA406 cyberespionage group activity in 2021
Conti ransomware operations made at least $25.5 million since July 2021
Android banking Trojan BrazKing is back with significant evasion improvements
Microsoft addresses a high-severity vulnerability in Azure AD
Attackers deploy Linux backdoor on e-stores compromised with software skimmer
Zero-Day flaw in FatPipe products actively exploited, FBI warns
Phishing campaign targets Tiktok influencer accounts
US, UK and Australia warn of Iran-linked APTs exploiting Fortinet, Microsoft Exchange flaws
Netgear fixes code execution flaw in many SOHO devices
CISA releases incident response plans for federal agencies
The rise of millionaire zero-day exploit markets
Iran-linked APT groups continue to evolve
Mandiant links Ghostwriter operations to Belarus
GitHub addressed two major vulnerabilities in the NPM package manager
Adult cam site StripChat exposes the data of millions of users and cam models
Intel addresses 2 high-severity issues in BIOS firmware of several processors
SharkBot, a new Android Trojan targets banks in Europe
Operation Reacharound – Emotet malware is back
Cloudflare mitigated 2 Tbps DDoS attack, the largest attack it has seen to date
North Korea-linked Lazarus group targets cybersecurity experts with Trojanized IDA Pro
Microsoft rolled out emergency updates to fix Windows Server auth failures
Happy 10th Birthday, Security Affairs
QAKBOT Trojan returns using Squirrelwaffle as a dropper
Two Sony PS5 exploits disclosed the same day
ENISA – The need for Incident Response Capabilities in the health sector
Updated: Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server
FTC shares guidance for small businesses to prevent ransomware attacks
Threat Report Portugal: Q3 2021

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]