Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Security Affairs newsletter Round 95 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. First of all, let me inform you that at the #infosec16 SecurityAffairs was awarded as The Best European Personal Security Blog http://securityaffairs.co/wordpress/48202/breaking-news/securityaffairs-best-european-personal-security-blog.html ·        Iranian Group OilRig is back and delivers digitally signed malware ·        Security Affairs newsletter Round 94 […]

newsletter

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

First of all, let me inform you that at the #infosec16 SecurityAffairs was awarded as The Best European Personal Security Blog
http://securityaffairs.co/wordpress/48202/breaking-news/securityaffairs-best-european-personal-security-blog.html

·        Iranian Group OilRig is back and delivers digitally signed malware
·        Security Affairs newsletter Round 94 – News of the week
·        Crooks target UK schools with ‘Department of Education ransomware
·        Recent power outages in Turkey were also caused by cyber attacks
·        French Minister Le Drian on cyber espionage: France is not immune, ready to hack back
·        ESEA data breach, 1.5 million gamers records leaked
·        Security Researcher hacks “Anti Tracking & Pro Privacy” Brave Browser
·        Number of MongoDB ransom attacks peaked 27,000 in a day
·        Hello Kitty database leaked online, 3.3 million fans affected
·        CVE-2016-7200 & CVE-2016-7201 Edge flaws added to the Sundown Exploit Kit
·        The Los Angeles Community College District paid a $28,000 ransom to decrypt its files
·        A Second variant of Shamoon 2 targets virtualization products
·        ShadowBrokers offers for sale the stolen NSA Windows Hacking Tools
·        Juniper SRX firewalls open a root-level account due to a flaw
·        Thousands of unpatched Magento shops hacked in the last two years
·        Spora Ransomware allows victims to pay for immunity from future attacks
·        In 2016, these are the four ways how bots altered history
·        EyePyramid – Police arrests two for hacking into emails of politicians, lawyers, entrepreneurs, and masons
·        Israeli mobile phone data extraction company Cellebrite was hacked
·        The ISC issued updates for 4 High severity DoS flaws in BIND
·        Two observations about the Italian EyePyramid espionage campaign
·        WordPress 4.7.1 released, patches eight vulnerabilities and 62 bugs
·        ShadowBrokers exits releasing another arsenal of tools to hack Windows
·        @Kapustkiy is back and hacked the Government of Venezuela
·        WhatsApp backdoor? What is wrong in the last claims?
·        Hackers that hit MongoDB installs now switch on exposed Elasticsearch clusters

Once again thank you!

[adrotate banner=”9″]

Pierluigi Paganini

(Security Affairs – Newsletter)