News

Breaking News

Entertainment

Movies & Series

Music

Science & Technology

Sport

Business & Money

Education & Personal Development

Life

Culture & Art

Hobbies

News

Entertainment

Science & Technology

Sport

Business & Money

Education & Personal Development

Life

Culture & Art

Hobbies

home
›
Security Affairs
›
Software

Security Affairs - Software

8 | Follower

Security Affairs

03.02.2025

Law enforcement seized the domains of HeartSender cybercrime marketplaces

U.S. and Dutch authorities seized 39 domains and servers linked to the HeartSender cybercrime group based in Pakistan.

Security Affairs

03.02.2025

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 31

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security Affairs

03.02.2025

Security Affairs newsletter Round 509 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free.

Security Affairs

03.02.2025

WhatsApp disrupted a hacking campaign targeting journalists with Paragon spyware

Meta announced the disruption of a malware campaign via WhatsApp that targeted journalists with the Paragon spyware.

Security Affairs

03.02.2025

Texas is the first state to ban DeepSeek on government devices

Texas bans DeepSeek and RedNote on government devices to block Chinese data-harvesting AI, citing security risks.

Security Affairs

02.02.2025

A ransomware attack forced New York Blood Center to reschedule appointments

The New York Blood Center faced a ransomware attack on Sunday, forcing the healthcare organization to reschedule appointments.

Security Affairs

02.02.2025

Ransomware attack hit Indian multinational Tata Technologies

Indian multinational technology company Tata Technologies suspended some IT services following a ransomware attack.

Security Affairs

01.02.2025

Italy's data protection authority Garante blocked the DeepSeek AI platform

Italy's data protection authority Garante blocked the DeepSeek AI service due to insufficient transparency regarding user data process.

Security Affairs

01.02.2025

Broadcom fixed information disclosure flaws in VMware Aria Operations

Broadcom patched 5 flaws in VMware Aria Operations and Aria Operations for Logs that could lead to privilege escalation and credential theft.

Security Affairs

01.02.2025

Community Health Center data breach impacted over 1 million patients

Community Health Center (CHC) data breach impacted over 1 million patients in Connecticut, the healthcare provider started notifying them.

Security Affairs

01.02.2025

Contec CMS8000 patient monitors contain a hidden backdoor

The U.S. CISA and the FDA warned of a hidden backdoor in Contec CMS8000 and Epsimed MN-120 patient monitors.

Security Affairs

31.01.2025

DeepSeek database exposed highly sensitive information

Chinese AI platform DeepSeek has publicly exposed two databases containing highly sensitive user and backend details.

Security Affairs

31.01.2025

PHP package Voyager flaws expose to one-click RCE exploits

Open-source PHP package Voyager is affected by three vulnerabilities that could be exploited to achieve one-click RCE on affected instances

Security Affairs

31.01.2025

TeamViewer fixed a bug in Windows client and host applications

TeamViewer has patched a high-severity privilege escalation vulnerability affecting its Windows client and host applications.

Security Affairs

31.01.2025

Operation Talent: An international law enforcement operation seized Cracked, Nulled and other cybercrime websites

An international law enforcement operation targeted several major cybercriminals sites, including Cracked, Nulled, Sellix, and StarkRDP.

Security Affairs

31.01.2025

Italy’s Data Protection Authority Garante requested information from Deepseek

Italy’s data privacy regulator Garante has requested information from Chinese AI company DeepSeek regarding its data practices.

Security Affairs

30.01.2025

U.S. CISA adds Apple products' flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple products' flaw to its Known Exploited Vulnerabilities catalog.

Security Affairs

30.01.2025

Aquabot variant v3 targets Mitel SIP phones

A new variant of the Mirai-based botnet Aquabot targets vulnerable Mitel SIP phones to recruit them into a DDoS botnet.

Security Affairs

30.01.2025

Critical remote code execution bug found in Cacti framework

A critical flaw in Cacti open-source network monitoring and fault management framework that could allow remote code execution.

Security Affairs

30.01.2025

Attackers actively exploit a critical zero-day in Zyxel CPE Series devices

Experts warn that threat actors are actively exploiting critical zero-day, tracked as CVE-2024-40891, in Zyxel CPE Series devices.

Security Affairs

29.01.2025

Ransomware attack on ENGlobal compromised personal information

ENGlobal reported to the SEC that personal information was compromised in a ransomware attack that took place in November 2024.

Security Affairs

29.01.2025

Attackers exploit SimpleHelp RMM Software flaws for initial access

Threat actors exploit recently fixed SimpleHelp RMM software vulnerabilities to breach targeted networks, experts warn.

Security Affairs

29.01.2025

EU announced sanctions on three members of Russia's GRU Unit 29155

The EU sanctioned three members of Russia's GRU Unit 29155 for cyberattacks on Estonia's government agencies in 2020.

Security Affairs

29.01.2025

VMware fixed a flaw in Avi Load Balancer

VMware fixed a high-risk blind SQL injection vulnerability in Avi Load Balancer, allowing attackers to exploit databases via crafted queries.

Security Affairs

28.01.2025

ESXi ransomware attacks use SSH tunnels to avoid detection

Threat actors behind ESXi ransomware attacks target virtualized environments using SSH tunneling to avoid detection.

Security Affairs

28.01.2025

Hackers allegedly stole $69M from cryptocurrency platform Phemex

Crooks stole at least $69 million from Singapore-based cryptocurrency platform Phemex in an alleged cyberattack.

Security Affairs

28.01.2025

GamaCopy targets Russia mimicking Russia-linked Gamaredon APT

A threat actor called GamaCopy mimics Russia-linked Gamaredon APT in attacks on Russian-speaking targets.....

Security Affairs

28.01.2025

Apple fixed the first actively exploited zero-day of 2025

Apple addressed the first zero-day vulnerability of 2025, which is actively exploited in attacks in the wild aimed at iPhone users.

Security Affairs

28.01.2025

TalkTalk confirms data breach involving a third-party platform

UK telecommunications firm TalkTalk disclosed a data breach after a threat actor announced the hack on a cybercrime forum.

Security Affairs

28.01.2025

Chinese AI platform DeepSeek faced a "large-scale" cyberattack

Chinese AI company DeepSeek has disabled registrations for its DeepSeek-V3 chat platform following a "large-scale" cyberattack.

Security Affairs

28.01.2025

Multiple Git flaws led to credentials compromise

Vulnerabilities in the Git credential retrieval protocol could have allowed threat actors to access user credentials.

Security Affairs

27.01.2025

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 30

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security Affairs

27.01.2025

Security Affairs newsletter Round 508 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free.

Security Affairs

27.01.2025

Change Healthcare data breach exposed the private data of over half the U.S.

The Change Healthcare data breach is worse than initially estimated: approximately 190 million people have been affected.

Security Affairs

26.01.2025

Cisco warns of a ClamAV bug with PoC exploit

Cisco fixed a ClamAV denial-of-service (DoS) vulnerability, and experts warn of the availability of a proof-of-concept (PoC) exploit code.

Security Affairs

26.01.2025

Subaru Starlink flaw allowed experts to remotely hack cars

A flaw in Subaru's Starlink connected vehicle service left cars and customer accounts in the US, Canada, and Japan exposed to remote attacks

Security Affairs

26.01.2025

Participants in the Pwn2Own Automotive 2025 earned $886,250

The Pwn2Own Automotive 2025 hacking contest has ended, and participants earned $886,250 after demonstrating 49 zero-day flaws.

Security Affairs

25.01.2025

U.S. CISA adds SonicWall SMA1000 flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA added SonicWall SMA1000 AMC and CMC vulnerability to its Known Exploited Vulnerabilities catalog.

Security Affairs

25.01.2025

J-magic malware campaign targets Juniper routers

Threat actors are targeting Juniper routers with a custom backdoor in a campaign tracked as named "J-magic."

Security Affairs

25.01.2025

SonicWall warns of a critical CVE-2025-23006 zero-day likely exploited in the wild

SonicWall warns customers of a critical zero-day vulnerability in SMA 1000 Series appliances, likely exploited in the wild.

home›Security Affairs›Software

Security Affairs - Software

Law enforcement seized the domains of HeartSender cybercrime marketplaces

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 31

Security Affairs newsletter Round 509 by Pierluigi Paganini – INTERNATIONAL EDITION

WhatsApp disrupted a hacking campaign targeting journalists with Paragon spyware

Texas is the first state to ban DeepSeek on government devices

A ransomware attack forced New York Blood Center to reschedule appointments

Ransomware attack hit Indian multinational Tata Technologies

Italy's data protection authority Garante blocked the DeepSeek AI platform

Broadcom fixed information disclosure flaws in VMware Aria Operations

Community Health Center data breach impacted over 1 million patients

Contec CMS8000 patient monitors contain a hidden backdoor

DeepSeek database exposed highly sensitive information

PHP package Voyager flaws expose to one-click RCE exploits

TeamViewer fixed a bug in Windows client and host applications

Operation Talent: An international law enforcement operation seized Cracked, Nulled and other cybercrime websites

Italy’s Data Protection Authority Garante requested information from Deepseek

U.S. CISA adds Apple products' flaw to its Known Exploited Vulnerabilities catalog

Aquabot variant v3 targets Mitel SIP phones

Critical remote code execution bug found in Cacti framework

Attackers actively exploit a critical zero-day in Zyxel CPE Series devices

Ransomware attack on ENGlobal compromised personal information

Attackers exploit SimpleHelp RMM Software flaws for initial access

EU announced sanctions on three members of Russia's GRU Unit 29155

VMware fixed a flaw in Avi Load Balancer

ESXi ransomware attacks use SSH tunnels to avoid detection

Hackers allegedly stole $69M from cryptocurrency platform Phemex

GamaCopy targets Russia mimicking Russia-linked Gamaredon APT

Apple fixed the first actively exploited zero-day of 2025

TalkTalk confirms data breach involving a third-party platform

Chinese AI platform DeepSeek faced a "large-scale" cyberattack

Multiple Git flaws led to credentials compromise

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 30

Security Affairs newsletter Round 508 by Pierluigi Paganini – INTERNATIONAL EDITION

Change Healthcare data breach exposed the private data of over half the U.S.

Cisco warns of a ClamAV bug with PoC exploit

Subaru Starlink flaw allowed experts to remotely hack cars

Participants in the Pwn2Own Automotive 2025 earned $886,250

U.S. CISA adds SonicWall SMA1000 flaw to its Known Exploited Vulnerabilities catalog

J-magic malware campaign targets Juniper routers

SonicWall warns of a critical CVE-2025-23006 zero-day likely exploited in the wild

home
›
Security Affairs
›
Software