Security Affairs
Critical Gitea Docker Bug Under Active Exploitation Exposes Repositories and Secrets|Spanish Police Arrest Man Linked to CARR, Z-Pentest, and NoName057(16)|Hidden Tenda Router Backdoor Grants Admin Access, No Patch Available|AI-Generated Malware Powers New Armored Likho APT Campaign|Januscape: 16-Year-Old Linux KVM Bug Enables Cloud VM Escape Attacks|Adobe ColdFusion flaw CVE-2026-48282 now exploited in the wild|Hidden Web Prompts Trick AI Agents Into Sending Money|Seven Bugs in FatFs Put IoT and Embedded Devices at Risk|Bad Epoll Flaw Gives Attackers Root Access on Linux and Android|Medtronic Notifies 3.8 Million After ShinyHunters Data Breach|SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 104|Security Affairs newsletter Round 584 by Pierluigi Paganini – INTERNATIONAL EDITION|Critical Gitea Docker Bug Under Active Exploitation Exposes Repositories and Secrets|Spanish Police Arrest Man Linked to CARR, Z-Pentest, and NoName057(16)|Hidden Tenda Router Backdoor Grants Admin Access, No Patch Available|AI-Generated Malware Powers New Armored Likho APT Campaign|Januscape: 16-Year-Old Linux KVM Bug Enables Cloud VM Escape Attacks|Adobe ColdFusion flaw CVE-2026-48282 now exploited in the wild|Hidden Web Prompts Trick AI Agents Into Sending Money|Seven Bugs in FatFs Put IoT and Embedded Devices at Risk|Bad Epoll Flaw Gives Attackers Root Access on Linux and Android|Medtronic Notifies 3.8 Million After ShinyHunters Data Breach|SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 104|Security Affairs newsletter Round 584 by Pierluigi Paganini – INTERNATIONAL EDITION|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 375 by Pierluigi Paganini

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for free in your email box. If you want to also receive for free the newsletter with the international press subscribe here. FBI seized $500,000 worth of bitcoin obtained from Maui ransomware attacks SonicWall fixed critical SQLi in […]

newsletter

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for free in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

FBI seized $500,000 worth of bitcoin obtained from Maui ransomware attacks
SonicWall fixed critical SQLi in Analytics and GMS products
Account lockout policy in Windows 11 is enabled by default to block brute force attacks
Hackers breached Ukrainian radio station to spread fake news about Zelensky ‘s health
Candiru surveillance spyware DevilsTongue exploited Chrome Zero-Day to target journalists
TA4563 group leverages EvilNum malware to target European financial and investment entities
Threat actors target software firm in Ukraine using GoMet backdoor
Lightning Framework, a previously undetected malware that targets Linux systems
Atlassian patched a critical Confluence vulnerability
Apple fixes multiple flaws in iOS, iPadOS, macOS, tvOS, and watchOS devices
8220 Gang Cloud Botnet infected 30,000 host globally
New Luna ransomware targets Windows, Linux and ESXi systems
Million of vehicles can be attacked via MiCODUS MV720 GPS Trackers
EU warns of risks of spillover effects associated with the ongoing war in Ukraine
Belgium claims China-linked APT groups hit its ministries
CloudMensis spyware went undetected for many years
Russia-linked APT29 relies on Google Drive, Dropbox to evade detection
Crooks create rogue cryptocurrency-themed apps to steal crypto assets from users
Several apps on the Play Store used to spread Joker, Facestealer and Coper malware
MLNK Builder 4.2 released in Dark Web – malicious shortcut-based attacks are on the rise
Tor Browser 11.5 is optimized to automatically bypass censorship
A massive cyberattack hit Albania
Watch out for the CVE-2022-30136 Windows NFS Remote Code Execution flaw
Graff paid a $7.5M ransom and sued its insurance firm for refusing to cover this payment
Crooks stole $375k from Premint NFT, it is one of the biggest NFT hacks ever
Google is going to remove App Permissions List from the Play Store
Security Affairs newsletter Round 374 by Pierluigi Paganini
APT groups target journalists and media organizations since 2021

If you want to also receive for free the newsletter with the international press subscribe here.

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]