Source: securityaffairs.com – Author: Pierluigi Paganini Bitdefender researchers have discovered 60,000 different Android apps secretly installing adware in the past six months. Bitdefender announced the discovery...
Source: securityaffairs.com – Author: Pierluigi Paganini A flaw in NASA website dedicated to astrobiology could have tricked users into visiting malicious websites by disguising a dangerous...
Source: securityaffairs.com – Author: Pierluigi Paganini Threat actors have stolen more than $35 million from the decentralized cryptocurrency wallet platform Atomic Wallet. Atomic Wallet is a...
Source: securityaffairs.com – Author: Pierluigi Paganini Google released security updates to address a high-severity zero-day flaw in the Chrome web browser that it actively exploited in...
Source: securityaffairs.com – Author: Pierluigi Paganini Researchers from security firm Uptycs reported that threat actors linked to the Cyclops ransomware are offering a Go-based information stealer. The Cyclops group...
Source: securityaffairs.com – Author: Pierluigi Paganini The BBC and British Airways were both impacted by the data breach suffered by the payroll provider Zellis. As a...
Source: securityaffairs.com – Author: Pierluigi Paganini KeePass addressed the CVE-2023-32784 bug that allows the extraction of the cleartext master password from the memory of the client....
Source: securityaffairs.com – Author: Pierluigi Paganini Microsoft attributes the recent campaign exploiting a zero-day in the MOVEit Transfer platform to the Clop ransomware gang. The Clop...
Source: securityaffairs.com – Author: Pierluigi Paganini Last week two eastern Idaho hospitals and their clinics were hit by a cyberattack that temporarily impacted their operations. Last...
Source: securityaffairs.com – Author: Pierluigi Paganini VMware’s Carbon Black Managed Detection and Response (MDR) team observed a surge of TrueBot activity in May 2023. Researchers at...
Source: securityaffairs.com – Author: Pierluigi Paganini A new ongoing Magecart web skimmer campaign abuse legitimate websites to act as makeshift command and control (C2) servers. Akamai...
Source: securityaffairs.com – Author: Pierluigi Paganini Play ransomware group claims responsibility for a ransomware attack that hit Globalcaja, one of the major banks in Spain. Globalcaja...
Source: securityaffairs.com – Author: Pierluigi Paganini Privacy Overview This website uses cookies to improve your experience while you navigate through the website. Out of these cookies,...
Source: securityaffairs.com – Author: Pierluigi Paganini Several Swiss cantonal police, the army, customs and the Federal Office of Police (Fedpol) were impacted by the attack against...
Source: securityaffairs.com – Author: Pierluigi Paganini Zyxel has published guidance for protecting firewall and VPN devices from the ongoing attacks recently discovered. Zyxel has published guidance...
Source: securityaffairs.com – Author: Pierluigi Paganini North Korea-linked APT group Kimsuky is posing as journalists to gather intelligence, a joint advisory from NSA and FBI warns....
Source: securityaffairs.com – Author: Pierluigi Paganini Experts noticed that the new Linux ransomware BlackSuit has significant similarities with the Royal ransomware family. Royal ransomware is one of the most...
Source: securityaffairs.com – Author: Pierluigi Paganini US CISA added actively exploited Progress MOVEit Transfer zero-day vulnerability to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure...
Source: securityaffairs.com – Author: Pierluigi Paganini A new botnet malware dubbed Horabot is targeting Spanish-speaking users in Latin America since at least November 2020. Cisco Talos researchers were...
Source: securityaffairs.com – Author: Pierluigi Paganini After the recent ransomware attack, Point32Health disclosed a data breach that impacted 2.5 million Harvard Pilgrim Health Care subscribers. In...
Source: securityaffairs.com – Author: Pierluigi Paganini Threat actors are exploiting a zero-day flaw in Progress Software’s MOVEit Transfer product to steal data from organizations. Threat actors...
Source: securityaffairs.com – Author: Pierluigi Paganini Russia’s intelligence Federal Security Service (FSB) said that the recent attacks against iPhones with a zero-click iOS exploit as part...
Source: securityaffairs.com – Author: Pierluigi Paganini A previously undocumented APT group targets iOS devices with zero-click exploits as part of a long-running campaign dubbed Operation Triangulation. Researchers...
Source: securityaffairs.com – Author: Pierluigi Paganini Prosperix leaked nearly 250,000 files. The breach exposed job seekers’ sensitive data, including home addresses and phone numbers. Prosperix, formally...
Source: securityaffairs.com – Author: Pierluigi Paganini Researchers discovered spyware, dubbed SpinOk, hidden in 101 Android apps with over 400 million downloads in Google Play. The malicious...
Source: securityaffairs.com – Author: Pierluigi Paganini The BlackCat ransomware gang claims to have hacked the Casepoint legal technology platform used US agencies, including SEC and FBI....
Source: securityaffairs.com – Author: Pierluigi Paganini Threat actors are actively exploiting a command injection flaw, tracked as CVE-2023-28771, in Zyxel firewalls to install malware. Threat actors...
Source: securityaffairs.com – Author: Pierluigi Paganini Researchers discovered a suspected backdoor-like behavior within Gigabyte systems that exposes devices to compromise. Researchers from firmware security firm Eclypsium...
Source: securityaffairs.com – Author: Pierluigi Paganini Recently disclosed zero-day flaw in Barracusa Email Security Gateway (ESG) appliances had been actively exploited by attackers since October 2022....
Source: securityaffairs.com – Author: Pierluigi Paganini A misconfiguration of Swiss real estate agency Neho’s systems exposed sensitive credentials to the public. Neho, a Switzerland-based real estate...
