Security Affairs
Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 384

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. LastPass revealed that intruders had internal access for four days during the August hack CISA adds […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

LastPass revealed that intruders had internal access for four days during the August hack
CISA adds Stuxnet bug to its Known Exploited Vulnerabilities Catalog
Bitdefender releases Universal LockerGoga ransomware decryptor
North Korea-linked APT spreads tainted versions of PuTTY via WhatsApp
Uber hacked, internal systems and confidential documents were allegedly compromised
Akamai mitigated a new record-breaking DDoS attack against a Europen customer
Experts warn of self-spreading malware targeting gamers looking for cheats on YouTube
Russia-linked Gamaredon APT target Ukraine with a new info-stealer
FBI: Millions in Losses resulted from attacks against Healthcare payment processors
Crooks are using lures related to Her Majesty Queen Elizabeth II in phishing attacks
CISA added 2 more security flaws to its Known Exploited Vulnerabilities Catalog
SparklingGoblin APT adds a new Linux variant of SideWalk implant to its arsenal
Twitter former head of security told the Senate of severe security failings by the company
Threat actors are actively exploiting a zero-day in WPGateway WordPress plugin
Microsoft September 2022 Patch Tuesday fixed actively exploited zero-day
Cyber espionage campaign targets Asian countries since 2021
Trend Micro addresses actively exploited Apex One zero-day
Iran-linked TA453 used new Multi-Persona Impersonation technique in recent attacks
Montenegro and its allies are working to recover from the massive cyber attack
Pro-Palestinian group GhostSec hacked Berghof PLCs in Israel
Apple fixed the eighth actively exploited zero-day this year
Google announced the completion of the acquisition of Mandiant for $5.4 billion
Cisco confirms that data leaked by the Yanluowang ransomware gang were stolen from its systems
Some firmware bugs in HP business devices are yet to be fixed
Albania was hit by a new cyberattack and blames Iran
Iran-linked APT42 is behind over 30 espionage attacks

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]