News

Breaking News

Entertainment

Movies & Series

Music

Science & Technology

Sport

Business & Money

Education & Personal Development

Life

Culture & Art

Hobbies

News

Entertainment

Science & Technology

Sport

Business & Money

Education & Personal Development

Life

Culture & Art

Hobbies

home
›
Security Affairs
›
Software

Security Affairs - Software

8 | Follower

Security Affairs

10.03.2025

Undocumented hidden feature found in Espressif ESP32 microchip

Experts discovered an undocumented hidden feature in the ESP32 microchip manufactured by Espressif, which is used in over 1 billion devices.

Security Affairs

10.03.2025

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 36

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security Affairs

09.03.2025

NTT suffered a data breach that impacted 18,000 companies

A data breach suffered by the Japanese telecom giant NTT exposed information of nearly 18,000 corporate customers.

Security Affairs

09.03.2025

Security Affairs newsletter Round 514 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free.

Security Affairs

09.03.2025

Akira ransomware gang used unsecured webcam to bypass EDR

The Akira ransomware gang exploited an unsecured webcam to bypass EDR and launch encryption attacks on a victim's network.

Security Affairs

08.03.2025

International law enforcement operation seized Russian crypto exchange Garantex

The U.S. Secret Service and global law enforcement seized the domain of sanctioned Russian crypto exchange Garantex.

Security Affairs

08.03.2025

The Role of Differential Privacy in Protecting Sensitive Information in the Era of Artificial Intelligence

Differential privacy protects data by adding noise to queries addressing Artificial Intelligence -era privacy challenges.

Security Affairs

08.03.2025

Mirai-based botnets exploit CVE-2025-1316 zero-day in Edimax IP cameras

Mirai-based botnets are exploiting a zero-day flaw, tracked as CVE-2025-1316, in Edimax IP cameras, to achieve remote command execution.

Security Affairs

07.03.2025

The U.S. DoJ charges 12 Chinese nationals for state-linked cyber operations

The U.S. Department of Justice (DoJ) charges 12 Chinese nationals for their alleged involvement in state-linked cyber operations.

Security Affairs

07.03.2025

Medusa Ransomware targeted over 40 organizations in 2025

Medusa ransomware has claimed nearly 400 victims since January 2023, with attacks increasing by 42% between 2023 and 2024.

Security Affairs

07.03.2025

Elastic patches critical Kibana flaw allowing code execution

Elastic fixed a critical flaw in Kibana data visualization dashboard software for Elasticsearch that could lead to arbitrary code execution.

Security Affairs

07.03.2025

Qilin Ransomware gang claims the hack of the Ministry of Foreign Affairs of Ukraine

Qilin Ransomware group claims to have breached the Ministry of Foreign Affairs of Ukraine, marking a significant cybersecurity attack.

Security Affairs

06.03.2025

Polish Space Agency POLSA disconnected its network following a cyberattack

The Polish space agency POLSA announced it has disconnected its network from the internet following a cyberattack.

Security Affairs

06.03.2025

China-linked APT Silk Typhoon targets IT Supply Chain

Microsoft warns that China-backed Silk Typhoon behind US Treasury hack, targets global IT supply chains, using IT firms.

Security Affairs

06.03.2025

Chinese Lotus Blossom APT targets multiple sectors with Sagerunex backdoor

China-linked Lotus Blossom APT targets governments and industries in Asian countries with new Sagerunex backdoor variants.

Security Affairs

06.03.2025

New Eleven11bot botnet infected +86K IoT devices

The Eleven11bot botnet has infected over 86,000 IoT devices, mainly security cameras and network video recorders (NVRs).

Security Affairs

06.03.2025

Hunters International ransomware group claims the theft of 1.4 TB of data allegedly stolen from Tata Technologies

Ransomware group Hunters International claims to have hacked Tata Technologies, threatening to leak 1.4 TB of stolen data.

Security Affairs

05.03.2025

Google fixed two actively exploited Android flaws

Android ’s March 2025 security update addresses over 40 vulnerabilities, including two flaws actively exploited in attacks in the wild.

Security Affairs

05.03.2025

Digital nomads and risk associated with the threat of infiltred employees

Companies face the risk of insider threats, worsened by remote work. North Korean hackers infiltrate firms via fake IT hires, stealing data.

Security Affairs

05.03.2025

U.S. CISA adds Linux kernel and VMware ESXi and Workstation flaws to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Linux kernel and VMware ESXi and Workstation flaws to its Known Exploited Vulnerabilities catalog.

Security Affairs

05.03.2025

VMware fixed three actively exploited zero-days in ESX products

Broadcom has addressed three VMware zero-day vulnerabilities in ESX products that are actively exploited in the wild.

Security Affairs

05.03.2025

Mass exploitation campaign hit 4,000+ ISP networks to deploy info stealers and crypto miners

A massive attack targets ISPs in China and the U.S. West Coast to deploy info stealers and crypto miners on compromised systems.

Security Affairs

04.03.2025

Serbian student activist’s phone hacked using Cellebrite zero-day exploit - Security Affairs

Amnesty International reports that a Cellebrite zero-day exploit was used to unlock a Serbian activist's Android phone.

Security Affairs

04.03.2025

CISA maintains stance on Russian cyber threats despite policy shift

US CISA confirms no change in defense against Russian cyber threats despite the Trump administration's pause on offensive operations.

Security Affairs

04.03.2025

U.S. CISA adds Multiple Cisco Small Business RV Series Routers, Hitachi Vantara Pentaho BA Server, Microsoft Windows Win32k, and Progress WhatsUp Gold flaws to its Known Exploited Vulnerabilities catalog - Security Affairs

U.S. CISA adds Cisco Small Business Routers and Microsoft Windows Win32k flaws to its Known Exploited Vulnerabilities catalog.

Security Affairs

04.03.2025

Meta fired 20 employees for leaking information, more firings expected

Meta fired about 20 employees because they had leaked “confidential information outside the company,” with more firings expected.

Security Affairs

04.03.2025

Qilin ransomware gang claimed responsibility for the Lee Enterprises attack

The Qilin ransomware group claims responsibility for attacking the newspaper Lee Enterprises, stealing 350GB of data.

Security Affairs

04.03.2025

U.S. Authorities recovered $31 Million Related to 2021 Uranium Finance cyber heist

U.S. authorities have recovered $31 million in cryptocurrency stolen during the 2021 cyberattacks on Uranium Finance.

Security Affairs

04.03.2025

Security Affairs newsletter Round 513 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free.

Security Affairs

04.03.2025

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 35

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security Affairs

02.03.2025

Ransomware gangs exploit a Paragon Partition Manager BioNTdrv.sys driver zero-day

Microsoft warns of a Paragon Partition Manager BioNTdrv.sys driver zero-day flaw actively exploited by ransomware gangs in attacks.

Security Affairs

02.03.2025

Microsoft disrupted a global cybercrime ring abusing Azure OpenAI Service

Microsoft exposed four individuals behind an Azure Abuse scheme using unauthorized GenAI access to create harmful content.

Security Affairs

01.03.2025

Cisco fixed command injection and DoS flaws in Nexus switches

Cisco addressed command injection and denial-of-service (DoS) vulnerabilities in some models of its Nexus switches.

Security Affairs

01.03.2025

Attackers could hack smart solar systems and cause serious damages

Hackers reveal security flaws in smart solar systems, exposing risks to national power grids as global reliance on solar energy grows.

Security Affairs

01.03.2025

Enhanced capabilities sustain the rapid growth of Vo1d botnet

Operators behind the Vo1d botnet have enhanced its capabilities, enabling rapid growth in recent months.

Security Affairs

28.02.2025

China-linked threat actors stole 10% of Belgian State Security Service (VSSE)'s staff emails

Belgium is investigating Chinese hackers for breaching its State Security Service (VSSE), stealing 10% of emails from 2021 to May 2023.

Security Affairs

28.02.2025

DragonForce Ransomware Group is Targeting Saudi Arabia

Resecurity researchers reported that DragonForce ransomware targets Saudi organizations rising cyber threats in the region.

Security Affairs

28.02.2025

Criminal group UAC-0173 targets the Notary Office of Ukraine

CERT-UA warns of UAC-0173 using DCRat malware to target Ukrainian notaries in a new attack wave since mid-January 2025.

Security Affairs

28.02.2025

FBI: North Korea-linked TraderTraitor is responsible for $1.5 Billion Bybit hack

The FBI confirmed that North Korea is responsible for the record-breaking cyber heist at the crypto exchange Bybit.

Security Affairs

28.02.2025

Cellebrite blocked Serbia from using its solution because misuse of the equipment for political reasons

Cellebrite blocked Serbia from using its solution after reports that police used it to infect the phones of a journalist and activist

home›Security Affairs›Software

Security Affairs - Software

Undocumented hidden feature found in Espressif ESP32 microchip

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 36

NTT suffered a data breach that impacted 18,000 companies

Security Affairs newsletter Round 514 by Pierluigi Paganini – INTERNATIONAL EDITION

Akira ransomware gang used unsecured webcam to bypass EDR

International law enforcement operation seized Russian crypto exchange Garantex

The Role of Differential Privacy in Protecting Sensitive Information in the Era of Artificial Intelligence

Mirai-based botnets exploit CVE-2025-1316 zero-day in Edimax IP cameras

The U.S. DoJ charges 12 Chinese nationals for state-linked cyber operations

Medusa Ransomware targeted over 40 organizations in 2025

Elastic patches critical Kibana flaw allowing code execution

Qilin Ransomware gang claims the hack of the Ministry of Foreign Affairs of Ukraine

Polish Space Agency POLSA disconnected its network following a cyberattack

China-linked APT Silk Typhoon targets IT Supply Chain

Chinese Lotus Blossom APT targets multiple sectors with Sagerunex backdoor

New Eleven11bot botnet infected +86K IoT devices

Hunters International ransomware group claims the theft of 1.4 TB of data allegedly stolen from Tata Technologies

Google fixed two actively exploited Android flaws

Digital nomads and risk associated with the threat of infiltred employees

U.S. CISA adds Linux kernel and VMware ESXi and Workstation flaws to its Known Exploited Vulnerabilities catalog

VMware fixed three actively exploited zero-days in ESX products

Mass exploitation campaign hit 4,000+ ISP networks to deploy info stealers and crypto miners

Serbian student activist’s phone hacked using Cellebrite zero-day exploit - Security Affairs

CISA maintains stance on Russian cyber threats despite policy shift

U.S. CISA adds Multiple Cisco Small Business RV Series Routers, Hitachi Vantara Pentaho BA Server, Microsoft Windows Win32k, and Progress WhatsUp Gold flaws to its Known Exploited Vulnerabilities catalog - Security Affairs

Meta fired 20 employees for leaking information, more firings expected

Qilin ransomware gang claimed responsibility for the Lee Enterprises attack

U.S. Authorities recovered $31 Million Related to 2021 Uranium Finance cyber heist

Security Affairs newsletter Round 513 by Pierluigi Paganini – INTERNATIONAL EDITION

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 35

Ransomware gangs exploit a Paragon Partition Manager BioNTdrv.sys driver zero-day

Microsoft disrupted a global cybercrime ring abusing Azure OpenAI Service

Cisco fixed command injection and DoS flaws in Nexus switches

Attackers could hack smart solar systems and cause serious damages

Enhanced capabilities sustain the rapid growth of Vo1d botnet

China-linked threat actors stole 10% of Belgian State Security Service (VSSE)'s staff emails

DragonForce Ransomware Group is Targeting Saudi Arabia

Criminal group UAC-0173 targets the Notary Office of Ukraine

FBI: North Korea-linked TraderTraitor is responsible for $1.5 Billion Bybit hack

Cellebrite blocked Serbia from using its solution because misuse of the equipment for political reasons

home
›
Security Affairs
›
Software