Security Affairs

FEBRUARY 19, 2023

Twitter will allow using the SMS-based two-factor authentication (2FA) only to its Blue subscribers GoDaddy discloses a new data breach Fortinet fixes critical vulnerabilities in FortiNAC and FortiWeb German airport websites hit by DDos attacks once again Cisco fixed critical RCE bug in ClamAV Open-Source Antivirus engine CISA adds Cacti, Office, Windows (..)

DDOS 79

DDOS Data breaches Surveillance Ransomware 79

Security Affairs

MARCH 26, 2023

Every week the best security articles from Security Affairs are free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here.

Data breaches 73

Data breaches DDOS Backups Ransomware 73

Security Affairs

MAY 21, 2023

Please vote for Security Affairs ( [link] ) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini Please nominate Security Affairs as your favorite blog.

Data breaches 83

Data breaches Cybercrime Ransomware Passwords 83

eSecurity Planet

APRIL 22, 2022

According to the Ponemon Institute and IBM, the global average cost of a data breach is $4.24 As the number and severity of data breaches continues to rise, organizations are recognizing that those costs are not theoretical. Its Privacy Builder is a toolkit to develop and improve data privacy and security.

Cyber Insurance 117

Cyber Insurance Insurance Marketing Small Business 117

Digital Shadows

FEBRUARY 22, 2023

Let’s focus attention on three key areas that have seen significant changes: state-sponsored activity, cybercrime, and hacktivism. Russian-government–backed APT groups have waged a range of cyber attacks against Ukrainian targets since the beginning of 2022. The war continues, and so do its effects on cybersecurity.

Cyber threats 96

Cyber threats Cybercrime Cyber Attacks DDOS 96

Security Affairs

DECEMBER 18, 2022

years in jail for spying on behalf of Saudi Arabia Social Blade discloses security breach Data of 5.7M years in jail for spying on behalf of Saudi Arabia Social Blade discloses security breach Data of 5.7M years in jail for spying on behalf of Saudi Arabia Social Blade discloses security breach Data of 5.7M

Data breaches 89

Data breaches Hacking DDOS VPN 89

Security Affairs

MARCH 12, 2023

PlugX malware delivered by exploiting flaws in Chinese programs Prometei botnet evolves and infected +10,000 systems since November 2022 CISA adds VMware’s Cloud Foundation bug to Known Exploited Vulnerabilities Catalog Law enforcement seized the website selling the NetWire RAT and arrested a Croatian man Latest version of Xenomorph Android malware (..)

Data breaches 78

Data breaches Banking Government Ransomware 78

SecureList

NOVEMBER 9, 2022

As for KSB 2022, we invited notable experts to share their insights and unbiased opinions on what we should expect from cybersecurity in the following year. We can therefore expect that cybercrime groups from either block will feel safe to attack companies from the opposing side. I expect that the theft of medical data (ex.

Cybersecurity 127

Cybersecurity Cyber Insurance Cybercrime IoT 127

Security Affairs

DECEMBER 11, 2022

Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5

Firewall 87

Firewall Banking Hacking DDOS 87

Malwarebytes

MARCH 17, 2022

BlackCat didn’t only demand a ransom under threat of data leaks; it also promised to fire up a DDoS (distributed denial of service) if the ransom wasn’t paid. There are also issues with augmented reality privacy concerns, data breaches, and photo realistic representations of your living space for all to see.

Cryptocurrency 116

Cryptocurrency Backups Phishing Password Management 116

Security Affairs

FEBRUARY 5, 2023

CISA adds Oracle, SugarCRM bugs to its Known Exploited Vulnerabilities Catalog GoAnywhere MFT zero-day flaw actively exploited CERT-FR warns of a new wave of ransomware attacks targeting VMware ESXi servers Tallahassee Memorial HealthCare, Florida, has taken IT systems offline after cyberattack Exploitation attempts for Oracle E-Business Suite flaw (..)

Healthcare 85

Healthcare Data breaches Malware Ransomware 85

Security Affairs

JULY 6, 2022

Experts observed an increase in malicious activity targeting law enforcement agencies at the beginning of Q2 2022. Resecurity, a Los Angeles-based cybersecurity company protecting Fortune 500 companies worldwide, has registered an increase in malicious activity targeting law enforcement agencies at the beginning of Q2 2022.

Hacking 116

Hacking Accountability DDOS Risk 116

Security Affairs

MARCH 13, 2022

CVE-2022-0492 flaw in Linux Kernel cgroups feature allows container escape Charities and NGOs providing support in Ukraine hit by malware. Is it fake news? Follow me on Twitter: @securityaffairs and Facebook.

Data breaches 80

Data breaches Firmware Hacking Ransomware 80

Security Affairs

JANUARY 30, 2022

QNAP force-installs update against the recent wave of DeadBolt ransomware infections US FCC bans China Unicom Americas telecom over national security risks NCSC warns UK entities of potential destructive cyberattacks from Russia Finnish diplomats’ devices infected with Pegasus spyware Zerodium offers $400,000 for Microsoft Outlook RCE zero-day exploits (..)

Spyware 77

Spyware Data breaches Ransomware Cybercrime 77

Security Affairs

APRIL 10, 2022

A DDoS attack took down Finnish govt sites as Ukraine’s President addresses MPs SharkBot Banking Trojan spreads through fake AV apps on Google Play China-linked threat actors target Indian Power Grid organizations A Mirai-based botnet is exploiting the Spring4Shell vulnerability? million US customers U.S.

DDOS 66

DDOS Data breaches Marketing Manufacturing 66

Security Affairs

SEPTEMBER 25, 2022

gov adds more Chinese Telecom firms to the Covered List Imperva blocked a record DDoS attack with 25.3 gov adds more Chinese Telecom firms to the Covered List Imperva blocked a record DDoS attack with 25.3

Cryptocurrency 79

Cryptocurrency Data breaches DNS DDOS 79

Security Affairs

OCTOBER 15, 2023

The gang also published a sample as proof of the stolen data. The popular researcher Brett Callow states that far this year, 29 US health systems with 90 hospitals between them have been impacted by #ransomware, and at least 23/29 had data stolen. Stats for 2022 in the link.

Ransomware 115

Ransomware Healthcare Data breaches Cyber Attacks 115

Security Affairs

NOVEMBER 27, 2022

Data from 5.4M Data from 5.4M

DDOS 110

DDOS Cybercrime Cryptocurrency Ransomware 110

Security Affairs

OCTOBER 16, 2022

payment cards for free Harvard Business Publishing licensee hit by ransomware Everest gang demands $200K for data stolen from South Africa state-owned electricity company ESKOM CommonSpirit hospital chains hit by ransomware, patients are facing problems Lloyd’s of London investigates alleged cyber attack.

Cyber Attacks 84

Cyber Attacks DDOS Ransomware Phishing 84

Security Affairs

OCTOBER 19, 2023

This is the 11th edition of the annual report and analyzes events that took place between July 2022 and July 2023. In the latter part of 2022 and the first half of 2023, the cybersecurity landscape witnessed a significant increase in both the variety and quantity of cyberattacks and their consequences.

Social Engineering 106

Social Engineering Artificial Intelligence Engineering Ransomware 106

BH Consulting

OCTOBER 15, 2023

A companion to Europol’s IOCTA 2023 report , it digs deeper into malware – ransomware in particular – and DDoS attacks. The report also sheds light on the growing professionalism of cybercrime groups, with many organising through affiliate programmes. MORE Joe Sullivan, Uber’s CSO during its data breach, shares his perspective.

Ransomware 52

Ransomware Data breaches CSO Cyber Attacks 52

Security Affairs

SEPTEMBER 18, 2022

billion Cisco confirms that data leaked by the Yanluowang ransomware gang were stolen from its systems Some firmware bugs in HP business devices are yet to be fixed Albania was hit by a new cyberattack and blames Iran Iran-linked APT42 is behind over 30 espionage attacks.

Firmware 83

Firmware DDOS Healthcare Hacking 83

Security Affairs

FEBRUARY 20, 2022

If you want to also receive for free the newsletter with the international press subscribe here.

Banking 79

Banking Spyware Surveillance Ransomware 79

SecureWorld News

NOVEMBER 8, 2023

These attacks have proliferated to such a degree that there were 493 million ransomware attacks in 2022 alone, and 19% of all data breaches were the result of stolen or compromised login credentials. All of these boil down to social engineering tactics, and they are not set to slow down anytime soon.

Social Engineering 88

Social Engineering Engineering Cyber Attacks Artificial Intelligence 88

Security Affairs

MARCH 20, 2022

EU and US agencies warn that Russia could attack satellite communications networks Avoslocker ransomware gang targets US critical infrastructure Crooks claims to have stolen 4TB of data from TransUnion South Africa Exotic Lily initial access broker works with Conti gang Emsisoft releases free decryptor for the victims of the Diavol ransomware China-linked (..)

DNS 83

DNS Antivirus DDOS Hacking 83

Krebs on Security

MARCH 23, 2022

Microsoft and identity management platform Okta both this week disclosed breaches involving LAPSUS$ , a relatively new cybercrime group that specializes in stealing data from big companies and threatening to publish it unless a ransom demand is paid. The group has claimed it is not state-sponsored.

Social Engineering 295

Social Engineering Accountability Mobile Passwords 295

SecureList

NOVEMBER 14, 2023

In June, Microsoft published a report on a threat actor named Cadet Blizzard, responsible for WhisperGate and other wipers targeting Ukrainian government agencies early in 2022. To sum up, although we did not see the same volume as we had in 2022, clearly there were some significant attacks. Verdict: prediction fulfilled ✅ 8.

Hacking 108

Hacking Energy and Utilities Media Malware 108

Security Affairs

APRIL 3, 2022

And how to prevent it?

Firewall 73

Firewall Hacking DDOS VPN 73

Malwarebytes

MAY 21, 2023

Upon its launch in November 2022, tech enthusiasts quickly jumped at the shiny new disruptor, and for good reason: ChatGPT has the potential to democratize AI, personalize and simplify digital research, and assist in both creative problem-solving and tackling “busywork.” Enter: ChatGPT.

Cybersecurity 77

Cybersecurity Artificial Intelligence Social Engineering Engineering 77