News

Breaking News

Entertainment

Movies & Series

Music

Science & Technology

Sport

Business & Money

Education & Personal Development

Life

Culture & Art

Hobbies

News

Entertainment

Science & Technology

Sport

Business & Money

Education & Personal Development

Life

Culture & Art

Hobbies

home
›
Security Affairs
›
Software

Security Affairs - Software

8 | Follower

Security Affairs

30.04.2024

NCSC: New UK law bans default passwords on smart devices

The UK National Cyber Security Centre (NCSC) orders smart device manufacturers to ban default passwords starting from April 29, 2024.

Security Affairs

30.04.2024

The FCC imposes $200 million in fines on four US carriers

The FCC fined the largest U.S. wireless carriers $200 million for sharing customers' real-time location data without consent.

Security Affairs

30.04.2024

Cyber-Partisans hacktivists claim to have breached Belarus KGB

A Belarusian group of activist group claims to have infiltrated the network of the country’s main KGB agency.

Security Affairs

30.04.2024

Google prevented 2.28 million policy-violating apps from being published on Google Play in 2023

Google announced they have prevented 2.28 million policy-violating apps from being published in the official Google Play.

Security Affairs

30.04.2024

FBCS data breach impacted 2M individuals

Financial Business and Consumer Solutions (FBCS) suffered a data breach that exposed information 2 million individuals.

Security Affairs

29.04.2024

The Los Angeles County Department of Health Services disclosed a data breach

Los Angeles County Department of Health Services reported a data breach that exposed thousands of patients' personal and health information.

Security Affairs

29.04.2024

ICICI Bank exposed credit card data of 17000 customers

ICICI Bank, a major private bank in India, mistakenly exposed the sensitive data of thousands of new credit cards to unintended recipients.

Security Affairs

29.04.2024

Multiple Brocade SANnav SAN Management SW flaws allow device compromise

Multiple flaws in Brocade SANnav storage area network (SAN) management application can allow to compromise impacted appliances.

Security Affairs

29.04.2024

Okta warns of unprecedented scale in credential stuffing attacks on online services

Identity and access management services provider Okta warned of a spike in credential stuffing attacks aimed at online services.

Security Affairs

29.04.2024

Security Affairs newsletter Round 469 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.

Security Affairs

28.04.2024

Hackers may have accessed thousands of accounts on California state welfare platform

Threat actors accessed more than 19,000 online accounts on a California state platform for welfare programs.

Security Affairs

28.04.2024

Targeted operation against Ukraine exploited 7-year-old MS Office bug

A hacking campaign targeted Ukraine exploiting a seven-year-old vulnerability in Microsoft Office to deliver Cobalt Strike.

Security Affairs

27.04.2024

Experts warn of malware campaign targeting WP-Automatic plugin

A critical vulnerability in the WordPress Automatic plugin is being exploited to inject backdoors and web shells into websites

Security Affairs

27.04.2024

Brokewell supports an extensive set of Device Takeover capabilities

ThreatFabric researchers identified a new Android malware called Brokewell, which implements a wide range of device takeover capabilities.

Security Affairs

27.04.2024

Cryptocurrencies and cybercrime: A critical intermingling

As cryptocurrencies have grown in popularity, there has also been growing concern about cybercrime involvement in this sector

Security Affairs

27.04.2024

Kaiser Permanente data breach may have impacted 13.4 million patients

Healthcare service provider Kaiser Permanente disclosed a security breach that may impact 13.4 million individuals in the United States.

Security Affairs

26.04.2024

Sweden’s liquor supply severely impacted by ransomware attack

A ransomware attack on a Swedish logistics company Skanlog severely impacted the country's liquor supply.....

Security Affairs

26.04.2024

DOJ arrested the founders of crypto mixer Samourai for facilitating $2 Billion in illegal transactions

The U.S. Department of Justice (DoJ) announced the arrest of two co-founders of a cryptocurrency mixer Samourai.

Security Affairs

26.04.2024

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA added the Windows Print Spooler flaw CVE-2022-38028 to its Known Exploited Vulnerabilities catalog.

Security Affairs

26.04.2024

+1,400 CrushFTP servers vulnerable to CVE-2024-4040

Over 1,400 CrushFTP internet-facing servers are vulnerable to attacks exploiting recently disclosed CVE-2024-4040 vulnerability.

Security Affairs

26.04.2024

CISA adds Cisco ASA and FTD and CrushFTP VFS flaws to its Known Exploited Vulnerabilities catalog

CISA adds Cisco ASA and FTD and CrushFTP VFS vulnerabilities to its Known Exploited Vulnerabilities catalog.

Security Affairs

25.04.2024

Google fixed critical Chrome vulnerability CVE-2024-4058

Google addressed a critical Chrome vulnerability, tracked as CVE-2024-4058, that resides in the ANGLE graphics layer engine.

Security Affairs

25.04.2024

Hackers hijacked the eScan Antivirus update mechanism in malware campaign

A malware campaign has been exploiting the updating mechanism of the eScan antivirus to distribute backdoors and cryptocurrency miners

Security Affairs

25.04.2024

Nation-state actors exploited two zero-days in ASA and FTD firewalls to breach government networks - Security Affairs

Nation-state actor UAT4356 has been exploiting two zero-days in ASA and FTD firewalls since November 2023 to breach government networks.

Security Affairs

24.04.2024

Street lights in Leicester City cannot be turned off due to a cyber attack

An attack on Leicester City Council resulted in certain street lights remaining illuminated all day and severely impacted its operations

Security Affairs

24.04.2024

US offers a $10M reward for information on four Iranian nationals

Treasury Department's Office of Foreign Assets Control sanctioned four Iranian nationals for their role in cyberattacks against the US.

Security Affairs

24.04.2024

North Korea-linked APT groups target South Korean defense contractors

The National Police Agency in South Korea warns that North Korea-linked threat actors are targeting defense industry entities.

Security Affairs

23.04.2024

U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity

The U.S. Department of State imposed visa restrictions on 13 individuals allegedly linked to the commercial spyware business

Security Affairs

23.04.2024

Russia-linked APT28 used tool GooseEgg for to exploit Win bug

Russia-linked APT28 group used a previously unknown tool, dubbed GooseEgg, to exploit Windows Print Spooler service flaw.

Security Affairs

23.04.2024

A cyber attack paralyzed operations at Synlab Italia

A cyber attack has been disrupting operations at Synlab Italia, a leading provider of medical diagnosis services, since April 18.

Security Affairs

23.04.2024

Windows DOS-to-NT flaws exploited to achieve unprivileged rootkit-like capabilities

Researcher demonstrated how to exploit vulnerabilities in the Windows DOS-to-NT path conversion process to achieve rootkit-like capabilities.

Security Affairs

23.04.2024

Hackers threaten to leak a copy of the World-Check database used to assess potential risks associated with entities

A financially motivated group named GhostR claims the theft of a sensitive database from World-Check and threatens to publish it.

Security Affairs

22.04.2024

A flaw in the Forminator plugin impacts hundreds of thousands of WordPress sites

Japan's CERT warns of a vulnerability in the Forminator WordPress plugin that allows unrestricted file uploads to the server.

Security Affairs

22.04.2024

DuneQuixote campaign targets Middle East with a complex backdoor

Threat actors target government entities in the Middle East with a new backdoor dubbed CR4T as part of an operation tracked as DuneQuixote.

Security Affairs

22.04.2024

Security Affairs newsletter Round 468 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.

Security Affairs

22.04.2024

Akira ransomware received $42M in ransom payments from over 250 victims

Government agencies revealed that Akira ransomware has breached over 250 entities worldwide and received over $42 million in ransom payments.

Security Affairs

21.04.2024

A French hospital was forced to reschedule procedures after cyberattack

A French hospital was forced to return to pen and paper and postpone medical treatments after a cyber attack.

Security Affairs

21.04.2024

Critical CrushFTP zero-day exploited in attacks in the wild

Threat actors exploited a critical zero-day vulnerability in the CrushFTP enterprise in targeted attacks, Crowdstrike experts warn.

Security Affairs

20.04.2024

MITRE revealed that nation-state actors breached its systems via Ivanti zero-days

The MITRE Corporation revealed that a nation-state actor compromised its systems in January 2024 by exploiting Ivanti VPN zero-days.

Security Affairs

20.04.2024

FBI chief says China is preparing to attack US critical infrastructure

China-linked threat actors are preparing cyber attacks against U.S. critical infrastructure warned FBI Director Christopher Wray.

home›Security Affairs›Software

Security Affairs - Software

NCSC: New UK law bans default passwords on smart devices

The FCC imposes $200 million in fines on four US carriers

Cyber-Partisans hacktivists claim to have breached Belarus KGB

Google prevented 2.28 million policy-violating apps from being published on Google Play in 2023

FBCS data breach impacted 2M individuals

The Los Angeles County Department of Health Services disclosed a data breach

ICICI Bank exposed credit card data of 17000 customers

Multiple Brocade SANnav SAN Management SW flaws allow device compromise

Okta warns of unprecedented scale in credential stuffing attacks on online services

Security Affairs newsletter Round 469 by Pierluigi Paganini – INTERNATIONAL EDITION

Hackers may have accessed thousands of accounts on California state welfare platform

Targeted operation against Ukraine exploited 7-year-old MS Office bug

Experts warn of malware campaign targeting WP-Automatic plugin

Brokewell supports an extensive set of Device Takeover capabilities

Cryptocurrencies and cybercrime: A critical intermingling

Kaiser Permanente data breach may have impacted 13.4 million patients

Sweden’s liquor supply severely impacted by ransomware attack

DOJ arrested the founders of crypto mixer Samourai for facilitating $2 Billion in illegal transactions

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

+1,400 CrushFTP servers vulnerable to CVE-2024-4040

CISA adds Cisco ASA and FTD and CrushFTP VFS flaws to its Known Exploited Vulnerabilities catalog

Google fixed critical Chrome vulnerability CVE-2024-4058

Hackers hijacked the eScan Antivirus update mechanism in malware campaign

Nation-state actors exploited two zero-days in ASA and FTD firewalls to breach government networks - Security Affairs

Street lights in Leicester City cannot be turned off due to a cyber attack

US offers a $10M reward for information on four Iranian nationals

North Korea-linked APT groups target South Korean defense contractors

U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity

Russia-linked APT28 used tool GooseEgg for to exploit Win bug

A cyber attack paralyzed operations at Synlab Italia

Windows DOS-to-NT flaws exploited to achieve unprivileged rootkit-like capabilities

Hackers threaten to leak a copy of the World-Check database used to assess potential risks associated with entities

A flaw in the Forminator plugin impacts hundreds of thousands of WordPress sites

DuneQuixote campaign targets Middle East with a complex backdoor

Security Affairs newsletter Round 468 by Pierluigi Paganini – INTERNATIONAL EDITION

Akira ransomware received $42M in ransom payments from over 250 victims

A French hospital was forced to reschedule procedures after cyberattack

Critical CrushFTP zero-day exploited in attacks in the wild

MITRE revealed that nation-state actors breached its systems via Ivanti zero-days

FBI chief says China is preparing to attack US critical infrastructure

home
›
Security Affairs
›
Software