Security Affairs
Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 365 by Pierluigi Paganini

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for free in your email box. If you want to also receive for free the newsletter with the international press subscribe here. The LEGION collective calls to action to attack the final of the Eurovision song contest […]

newsletter

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for free in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

The LEGION collective calls to action to attack the final of the Eurovision song contest
OpRussia update: Anonymous breached other organizations
Pro-Russian hacktivists target Italy government websites
SonicWall urges customers to fix SMA 1000 vulnerabilities
Zyxel fixed firewall unauthenticated remote command injection issue
Iran-linked COBALT MIRAGE group uses ransomware in its operations
New Nerbian RAT spreads via malspam campaigns using COVID-19
Massive hacking campaign compromised thousands of WordPress websites
Red TIM Research (RTR) founds 2 bugs affecting F5 Traffix SDC
Five Eyes agencies warn of attacks on MSPs
CISA adds CVE-2022-1388 flaw in F5 BIG-IP to its Known Exploited Vulnerabilities Catalog
Microsoft Patch Tuesday updates for May 2022 fixes 3 zero-days, 1 under active attack
EU condemns Russian cyber operations against Ukraine
Microsoft fixed RCE flaw in a driver used by Azure Synapse and Data Factory
Hacktivists hacked Russian TV schedules during Victory Day and displayed anti-war messages
Threat actors are actively exploiting CVE-2022-1388 RCE in F5 BIG-IP
Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service
DCRat, only $5 for a fully working remote access trojan
CERT-UA warns of malspam attacks distributing the Jester info stealer
Experts developed exploits for CVE-2022-1388 RCE in F5 BIG-IP products
Experts uncovered a new wave of attacks conducted by Mustang Panda
Conti ransomware claims to have hacked Peru MOF – Dirección General de Inteligencia (DIGIMIN)
May 01 – May 07 Ukraine – Russia the silent cyber conflict
NIST published updated guidance for supply chain risks
US agricultural machinery manufacturer AGCO suffered a ransomware attack
Security Affairs newsletter Round 364 by Pierluigi Paganini
US DoS offers a reward of up to $15M for info on Conti ransomware gang

Please vote for Security Affairs as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS
Vote for me in the sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog” and others of your choice.
To nominate, please visit: 
https://docs.google.com/forms/d/e/1FAIpQLSfxxrxICiMZ9QM9iiPuMQIC-IoM-NpQMOsFZnJXrBQRYJGCOw/viewform  

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]