Security Affairs
Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 403 by Pierluigi Paganini

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. The Irish DPC fined WhatsApp €5.5M for violating GDPR Around 19,500 end-of-life Cisco routers are exposed […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

The Irish DPC fined WhatsApp €5.5M for violating GDPR
Around 19,500 end-of-life Cisco routers are exposed to hack
T-Mobile suffered a new data breach, 37 million accounts have been compromised
PayPal notifies 34942 users of data breach over credential stuffing attack
Chinese hackers used recently patched FortiOS SSL-VPN flaw as a zero-day in October
Cisco fixes SQL Injection flaw in Unified CM
Experts released PoC exploit for critical Zoho ManageEngine RCE flaw
Critical Microsoft Azure RCE flaw impacted multiple services
Mailchimp discloses a new security breach, the second one in 6 months
US CISA adds Centos Web Panel RCE CVE-2022-44877 to its Known Exploited Vulnerabilities Catalog
Two critical flaws discovered in Git source code version control system
A couple of bugs can be chained to hack Netcomm routers
Myrocket HR platform’s data leak turns into privacy nightmare for employees 
Experts found SSRF flaws in four different Microsoft Azure services
1,000 ships impacted by a ransomware attack on maritime software supplier DNV
How to abuse GitHub Codespaces to deliver malicious content
Patch your Zoho ManageEngine instance immediately! PoC Exploit for CVE-2022-47966 will be released soon
Fortinet observed three rogue PyPI packages spreading malware
Managing Asset Risks During Healthcare M&As
Avast researchers released a free BianLian ransomware decryptor for some variants of the malware
Experts spotted a backdoor that borrows code from CIA’s Hive malware
T95 Android TV Box sold on Amazon hides sophisticated malware
Europol arrested cryptocurrency scammers that stole millions from victims
1.7 TB of data stolen from digital intelligence firm Cellebrite leaked online
Hacker stole credit cards from the website of Canada’s largest alcohol retailer LCBO

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]