Security Affairs

JANUARY 15, 2025

” According to Heise security , the published data doesn’t appear to be linked to recently published vulnerabilities in the FortiOS appliance operating system. The analysis of the configuration files revealed that all the FortiOS versions in the data set were older than version 7.2.2, ” reported Heise Security.

Passwords 323

Passwords Security IT Data breaches 323

Security Affairs

NOVEMBER 20, 2024

Apple released security updates for iOS, iPadOS, macOS, visionOS, and Safari browser to address two actively exploited zero-day flaws. Clément Lecigne and Benoît Sevens of Google’s Threat Analysis Group discovered both vulnerabilities. “Processing maliciously crafted web content may lead to a cross site scripting attack.

Security 285

Security IT 285

Security Affairs

JANUARY 16, 2025

” The analysis of the headers of the spam messages revealed a botnet of ~13,000 hijacked MikroTik devices, forming a network capable of executing large-scale malicious activities. The researchers found that the botnet comprises MikroTik routers with various firmware versions, including recent ones. ” concludes the report.

File names 347

File names Authentication Access Archiving 347

Security Affairs

JULY 28, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security 338

Security IoT Ransomware Access 338

Security Affairs

FEBRUARY 23, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. You’ve Got Malware: FINALDRAFT Hides in Your Drafts Telegram Abused as C2 Channel for New Golang Backdoor Infostealing Malware Infections in the U.S.

Security 163

Security Military Ransomware Cybersecurity 163

Security Affairs

JULY 19, 2024

Cisco has addressed a critical vulnerability that could allow attackers to add new root users to Security Email Gateway (SEG) appliances. The flaw resides in the content scanning and message filtering features of Cisco Secure Email Gateway. ” reads the advisory published by Cisco. ” reads the advisory published by Cisco.

Security 322

Security Passwords IT Information Security 322

Security Affairs

JANUARY 15, 2025

. “Threat actor dubbedCodefingeruses compromised AWS keys to encrypt S3 bucket data via SSE-C, leveraging AWSs secure encryption infrastructure in a way that prevents recovery without their generated key.” “AWS CloudTrail logs only an HMAC of the encryption key, which is insufficient for recovery or forensic analysis.”

Encryption 291

Encryption Ransomware Authentication Cloud 291

Security Affairs

FEBRUARY 24, 2025

Despite Microsoft phasing it out, it remains an active security risk. The botnet operators used stolen credentials from infostealer logs to target accounts at scale “These attacks are recorded in Non-Interactive Sign-In logs, which are often overlooked by security teams. ” continues the report.

Passwords 298

Passwords Authentication Access Cybersecurity 298

Security Affairs

FEBRUARY 24, 2025

” The app redirects users to external links for APK downloads, bypassing Google Play security. “The analysis of SpyLend reveals a highly deceptive and dangerous threat targeting Android users. .” reads the report published by CYFIRMA. “These loan apps are specifically designed to target Indian users.”

Access 294

Access Marketing Privacy IT 294

Security Affairs

SEPTEMBER 15, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security 297

Security Military Ransomware Marketing 297

Security Affairs

OCTOBER 6, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Rhadamanthys Stealer Adds Innovative AI Feature in Version 0.7.0

Honeypots 293

Honeypots Security Mining Cybersecurity 293

Security Affairs

AUGUST 11, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security 307

Security Ransomware Cloud Government 307

Security Affairs

FEBRUARY 9, 2024

Ivanti warns customers of a new authentication bypass vulnerability in its Connect Secure, Policy Secure, and ZTA gateway devices. “An XML external entity or XXE vulnerability in the SAML component of Ivanti Connect Secure (9.x, x), Ivanti Policy Secure (9.x, and 22.5R1.1); Policy Secure version 22.5R1.1;

Security 328

Security Authentication IT Access 328

Security Affairs

JANUARY 2, 2024

Researchers discovered an SSH vulnerability, called Terrapin, that could allow an attacker to downgrade the connection’s security. An attacker can trigger the flaw to downgrade the connection’s security implemented by the protocol. ” continues the analysis.

Security 337

Security Authentication Paper Encryption 337

Security Affairs

SEPTEMBER 8, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security 285

Security Insurance Ransomware Government 285

Security Affairs

MAY 9, 2024

Threat actors exploit recently disclosed Ivanti Connect Secure (ICS) vulnerabilities to deploy the Mirai botnet. Researchers from Juniper Threat Labs reported that threat actors are exploiting recently disclosed Ivanti Connect Secure (ICS) vulnerabilities CVE-2023-46805 and CVE-2024-21887 to drop the payload of the Mirai botnet.

Security 334

Security Authentication Ransomware Access 334

Security Affairs

APRIL 14, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 317

Security Data breaches Analytics Cybersecurity 317

Security Affairs

FEBRUARY 28, 2024

Analyzing the Email Security Landscape and exploring Emerging Threats and Trends. VIPRE Security Group’s latest report, “Email Security in 2024: An Expert Insight into Email Threats,” delves into the cutting-edge tactics and technologies embraced by cybercriminals this year. million as malicious.

Security 343

Security Phishing Communications Financial Services 343

Security Affairs

OCTOBER 29, 2024

Although the site claims to support macOS and iPhones, only Windows and Android payloads were available during the analysis. Its FAQ claims this approach protects user anonymity and security, directing victims to video instructions. ” concludes the report that also provided indicators of compromise for this campaign.

Military 296

Military IT Security Information Security 296

Security Affairs

JUNE 16, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches 307

Data breaches Security Ransomware Sales 307

Security Affairs

MARCH 13, 2025

GitLab released security updates to address critical vulnerabilities in Community Edition (CE) and Enterprise Edition (EE). ” reads a technical analysis of the two critical flaws. . ” reads a technical analysis of the two critical flaws. ” continues the analysis. GitLab CE/EE versions 17.7.7,

Authentication 168

Authentication Libraries Data breaches Security 168

Security Affairs

JANUARY 31, 2025

Security researchers from Michelin CERT and Abicom, including Maxime Escourbiac, Yassine Bengana, and Quentin Ebel, detected and reported the vulnerabilities. The vulnerability was discovered by cybersecurity firm Horizon3, which published a technical analysis of the flaw. The above vulnerabilities impact versions 8.x

Authentication 264

Authentication Cloud Cybersecurity Access 264

Security Affairs

MARCH 5, 2025

The agency revealed that it has disconnected its infrastructure to contain the attack and secure data, a circumstance that suggests it was the victim of a ransomware attack. An analysis of the situation is ongoing. To secure data after the breach, POLSA’s network was immediately disconnected from the internet. .

IT 254

IT Ransomware Cybersecurity Security 254

Krebs on Security

JULY 15, 2024

Monahan said the migration has left domain owners with fewer options to secure and monitor their accounts. It’s easier to secure one account than two.” Squarespace has not responded to a request for comment, nor has it issued a statement about the attacks.

Security 332

Security Passwords Access Phishing 332

Krebs on Security

MAY 6, 2024

But researchers at Leviathan Security say they’ve discovered it’s possible to abuse an obscure feature built into the DHCP protocol so that other users on the local network are forced to connect to a rogue DHCP server. ANALYSIS Bill Woodcock is executive director at Packet Clearing House , a nonprofit based in San Francisco.

IT 330

IT Security Encryption Passwords 330

Security Affairs

SEPTEMBER 14, 2024

Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 304

Security Data breaches Computer and Electronics Ransomware 304

Security Affairs

FEBRUARY 24, 2025

The origin of the data leak is unclear, the leak is large and inconsistently formatted, complicating the full analysis. TopSec is also a Tier 1 vulnerability supplier for China’s intelligence ministry and has provided cloud and IT security monitoring services nationwide since 2004.

Cybersecurity 237

Cybersecurity Government Cloud Security 237

Security Affairs

AUGUST 11, 2024

Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Is the INC ransomware gang behind the attack on McLaren hospitals?

Security 293

Security Ransomware MDM Personal data 293

Security Affairs

SEPTEMBER 29, 2024

Every week the best security articles from Security Affairs are free in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 289

Security Ransomware Phishing Cybersecurity 289

The Last Watchdog

DECEMBER 3, 2024

3, 2024, CyberNewswire — With Sweet, customers can now unify detection and response for applications, workloads, and cloud infrastructure Sweet Security today announced the release of its unified Cloud Native Detection and Response platform, designed to transform the way organizations protect their cloud environments in real time.

Cloud 130

Cloud Security IT Risk 130

eSecurity Planet

MARCH 24, 2025

The breach, exploiting a vulnerability in Oracles cloud infrastructure, now endangers over 140,000 tenants and has raised serious questions about cloud security practices. Incident discovery and exploitation According to CloudSEKs analysis, the threat actor claimed to have breached the subdomain login.us2.oraclecloud.com

Cloud 121

Cloud Risk Passwords Cybersecurity 121

Data Breach Today

JULY 26, 2024

New Analysis Reveals Growing Crisis for the National Vulnerability Database A growing backlog at the National Institute of Standards and Technology National Vulnerability Database could surge to above 30,000 unanalyzed security flaws by the end of the year if the agency fails to significantly ramp up its processing rates, according to a new analysis (..)

Security 297

Security IT 297