News

Breaking News

Entertainment

Movies & Series

Music

Science & Technology

Sport

Business & Money

Education & Personal Development

Life

Culture & Art

Hobbies

News

Entertainment

Science & Technology

Sport

Business & Money

Education & Personal Development

Life

Culture & Art

Hobbies

home
›
Security Affairs
›
Software

Security Affairs - Software

8 | Follower

Security Affairs

02.06.2025

A cyberattack hit hospitals operated by Covenant Health

A cyberattack hit three hospitals operated by Covenant Health, forcing them to shut down all systems to contain the incident.

Security Affairs

02.06.2025

Two flaws in vBulletin forum software are under attack

Experts found two vulnerabilities in the vBulletin forum software, one of which is already being exploited in real-world attacks.

Security Affairs

02.06.2025

Security Affairs newsletter Round 526 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles are free in your email box.

Security Affairs

02.06.2025

Experts published a detailed analysis of Cisco IOS XE WLC flaw CVE-2025-20188

Technical details about a critical Cisco IOS XE WLC flaw (CVE-2025-20188) are now public, raising the risk of a working exploit emerging soon.

Security Affairs

02.06.2025

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 47

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape

Security Affairs

01.06.2025

Two Linux flaws can lead to the disclosure of sensitive data

Qualys warns of two flaws in apport and systemd-coredump, the core dump handlers in Ubuntu, Red Hat Enterprise Linux, and Fedora distros.

Security Affairs

31.05.2025

Meta stopped covert operations from Iran, China, and Romania spreading propaganda

Meta stopped three covert operations from Iran, China, and Romania using fake accounts to spread propaganda on social media platforms.

Security Affairs

31.05.2025

US Treasury sanctioned the firm Funnull Technology as major cyber scam facilitator

The U.S. sanctioned Funnull Technology and Liu Lizhi for aiding romance scams that caused major crypto losses through fraud infrastructure.

Security Affairs

30.05.2025

Victoria’s Secret's website offline following a cyberattack

Victoria’s Secret took its website offline after a cyberattack, with experts warning of rising threats against major retailers.

Security Affairs

30.05.2025

ConnectWise suffered a cyberattack carried out by a sophisticated nation state actor

ConnectWise detected suspicious activity linked to a nation-state actor, impacting a small number of its ScreenConnect customers.

Security Affairs

30.05.2025

China-linked APT41 used Google Calendar as C2 to control its TOUGHPROGRESS malware

Google says China-linked group APT41 controlled malware via Google Calendar to target governments through a hacked site.

Security Affairs

29.05.2025

App Store Security: Apple stops $2B in fraud in 2024 alone, $9B over 5 years

Apple blocked $9B in fraud since 2019, including $2B in 2024, stopping scams via fake apps and payment schemes on the App Store.

Security Affairs

29.05.2025

New PumaBot targets Linux IoT surveillance devices

PumaBot targets Linux IoT devices, using SSH brute-force attacks to steal credentials, spread malware, and mine crypto.

Security Affairs

29.05.2025

New AyySSHush botnet compromised over 9,000 ASUS routers, adding a persistent SSH backdoor.

GreyNoise researchers warn of a new AyySSHush botnet compromised over 9,000 ASUS routers, adding a persistent SSH backdoor.

Security Affairs

29.05.2025

Czech Republic accuses China's APT31 of a cyberattack on its Foreign Ministry

The Czech government condemned China after linking cyber espionage group APT31 to a cyberattack on its critical infrastructure.

Security Affairs

29.05.2025

Crooks use a fake antivirus site to spread Venom RAT and a mix of malware

Researchers found a fake Bitdefender site spreading the Venom RAT by tricking users into downloading it as antivirus software.

Security Affairs

28.05.2025

Russia-linked APT Laundry Bear linked to 2024 Dutch Police attack

A new Russia-linked APT group, tracked as Laundry Bear, has been linked to a Dutch police security breach in September 2024.

Security Affairs

28.05.2025

DragonForce operator chained SimpleHelp flaws to target an MSP and its customers

Sophos warns that a DragonForce ransomware operator chained three vulnerabilities in SimpleHelp to target a managed service provider.

Security Affairs

28.05.2025

Iranian Man pleaded guilty to role in Robbinhood Ransomware attacks

Iranian man pleads guilty to role in Baltimore ransomware attack tied to Robbinhood, admitting to computer and wire fraud conspiracy.

Security Affairs

27.05.2025

Nova Scotia Power confirms it was hit by ransomware

Nova Scotia Power confirms it was hit by ransomware but hasn't paid the ransom, nearly a month after first disclosing the cyberattack.

Security Affairs

27.05.2025

Crooks stole +$200 million from crypto exchange Cetus Protocol

Cetus Protocol reported a $223 million crypto theft and is offering to drop legal action if the stolen funds are returned.

Security Affairs

27.05.2025

Marlboro-Chesterfield Pathology data breach impacted 235,911 individuals

SafePay ransomware hit Marlboro-Chesterfield Pathology, stealing personal data of 235,000 people in a major breach.

Security Affairs

27.05.2025

China-linked APT UNC5221 started exploiting Ivanti EPMM flaws shortly after their disclosure

China-linked APT exploit Ivanti EPMM flaws to target critical sectors across Europe, North America, and Asia-Pacific, according to EclecticIQ

Security Affairs

26.05.2025

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 46

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape

Security Affairs

26.05.2025

Operation ENDGAME disrupted global ransomware infrastructure

Operation ENDGAME dismantled key ransomware infrastructure, taking down 300 servers, 650 domains, and seizing €21.2M in crypto.

Security Affairs

26.05.2025

Leader of Qakbot cybercrime network indicted in U.S. crackdown

The U.S. indicted Russian Rustam Gallyamov for leading the Qakbot botnet, which infected 700K+ devices and was used in ransomware attacks.

Security Affairs

26.05.2025

Fake software activation videos on TikTok spread Vidar, StealC

Crooks use TikTok videos with fake tips to trick users into running commands that install Vidar and StealC malware in ClickFix attacks.

Security Affairs

26.05.2025

Security Affairs newsletter Round 525 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free.

Security Affairs

25.05.2025

Silent Ransom Group targeting law firms, the FBI warns

FBI warns Silent Ransom Group has targeted U.S. law firms for 2 years using callback phishing and social engineering extortion tactics.

Security Affairs

25.05.2025

Leader of Qakbot cybercrime network indicted in U.S. crackdown

The U.S. indicted Russian Rustam Gallyamov for leading the Qakbot botnet, which infected 700K+ devices and was used in ransomware attacks.

Security Affairs

24.05.2025

Operation RapTor led to the arrest of 270 dark web vendors and buyers

Law enforcement operation codenamed 'Operation RapTor' led to the arrest of 270 dark web vendors and buyers across 10 countries.

Security Affairs

23.05.2025

U.S. CISA adds a Samsung MagicINFO 9 Server flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds a Samsung MagicINFO 9 Server vulnerability to its Known Exploited Vulnerabilities catalog. .....

Security Affairs

23.05.2025

Law enforcement dismantled the infrastructure behind Lumma Stealer MaaS

Microsoft found 394,000 Windows systems talking to Lumma stealer controllers, a victim pool that included global manufacturers

Security Affairs

23.05.2025

New Signal update stops Windows from capturing user chats

Signal implements new screen security on Windows 11, blocking screenshots by default to protect user privacy from Microsoft’s Recall feature.

Security Affairs

23.05.2025

Chinese threat actors exploited Trimble Cityworks Flaw to breach U.S. local government networks

A Chinese threat actor, tracked as UAT-6382, exploited a patched Trimble Cityworks flaw to deploy Cobalt Strike and VShell.

Security Affairs

22.05.2025

U.S. CISA adds Ivanti EPMM, MDaemon Email Server, Srimax Output Messenger, Zimbra Collaboration, and ZKTeco BioTime flaws to its Known Exploited Vulnerabilities catalog

CISA adds Ivanti, MDaemon Email Server, Srimax Output Messenger, Zimbra, ZKTeco BioTime flaws to its Known Exploited Vulnerabilities catalog

Security Affairs

22.05.2025

Russia-linked APT28 targets western logistics entities and technology firms

CISA warns Russia-linked group APT28 is targeting Western logistics and tech firms aiding Ukraine, posing an elevated threat to supply chains

Security Affairs

22.05.2025

Coinbase data breach impacted 69,461 individuals

Cryptocurrency exchange Coinbase announced that the recent data breach exposed data belonging to 69,461 individuals.

Security Affairs

22.05.2025

A OpenPGP.js flaw lets attackers spoof message signatures

A flaw in OpenPGP.js, tracked as CVE-2025-47934, lets attackers spoof message signatures; updates have been released to address the flaw.

Security Affairs

22.05.2025

A cyberattack was responsible for the week-long outage affecting Cellcom wireless network

Cellcom, a regional wireless carrier based in Wisconsin, announced that a cyberattack caused a service outage it faced during the past week.

home›Security Affairs›Software

Security Affairs - Software

A cyberattack hit hospitals operated by Covenant Health

Two flaws in vBulletin forum software are under attack

Security Affairs newsletter Round 526 by Pierluigi Paganini – INTERNATIONAL EDITION

Experts published a detailed analysis of Cisco IOS XE WLC flaw CVE-2025-20188

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 47

Two Linux flaws can lead to the disclosure of sensitive data

Meta stopped covert operations from Iran, China, and Romania spreading propaganda

US Treasury sanctioned the firm Funnull Technology as major cyber scam facilitator

Victoria’s Secret's website offline following a cyberattack

ConnectWise suffered a cyberattack carried out by a sophisticated nation state actor

China-linked APT41 used Google Calendar as C2 to control its TOUGHPROGRESS malware

App Store Security: Apple stops $2B in fraud in 2024 alone, $9B over 5 years

New PumaBot targets Linux IoT surveillance devices

New AyySSHush botnet compromised over 9,000 ASUS routers, adding a persistent SSH backdoor.

Czech Republic accuses China's APT31 of a cyberattack on its Foreign Ministry

Crooks use a fake antivirus site to spread Venom RAT and a mix of malware

Russia-linked APT Laundry Bear linked to 2024 Dutch Police attack

DragonForce operator chained SimpleHelp flaws to target an MSP and its customers

Iranian Man pleaded guilty to role in Robbinhood Ransomware attacks

Nova Scotia Power confirms it was hit by ransomware

Crooks stole +$200 million from crypto exchange Cetus Protocol

Marlboro-Chesterfield Pathology data breach impacted 235,911 individuals

China-linked APT UNC5221 started exploiting Ivanti EPMM flaws shortly after their disclosure

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 46

Operation ENDGAME disrupted global ransomware infrastructure

Leader of Qakbot cybercrime network indicted in U.S. crackdown

Fake software activation videos on TikTok spread Vidar, StealC

Security Affairs newsletter Round 525 by Pierluigi Paganini – INTERNATIONAL EDITION

Silent Ransom Group targeting law firms, the FBI warns

Leader of Qakbot cybercrime network indicted in U.S. crackdown

Operation RapTor led to the arrest of 270 dark web vendors and buyers

U.S. CISA adds a Samsung MagicINFO 9 Server flaw to its Known Exploited Vulnerabilities catalog

Law enforcement dismantled the infrastructure behind Lumma Stealer MaaS

New Signal update stops Windows from capturing user chats

Chinese threat actors exploited Trimble Cityworks Flaw to breach U.S. local government networks

U.S. CISA adds Ivanti EPMM, MDaemon Email Server, Srimax Output Messenger, Zimbra Collaboration, and ZKTeco BioTime flaws to its Known Exploited Vulnerabilities catalog

Russia-linked APT28 targets western logistics entities and technology firms

Coinbase data breach impacted 69,461 individuals

A OpenPGP.js flaw lets attackers spoof message signatures

A cyberattack was responsible for the week-long outage affecting Cellcom wireless network

home
›
Security Affairs
›
Software