Security Affairs

JUNE 2, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches 124

Data breaches Cloud Migration VPN Cybercrime 124

Security Affairs

JULY 14, 2024

CISA adds Microsoft Windows and Rejetto HTTP File Server bugs to its Known Exploited Vulnerabilities catalog Evolve Bank data breach impacted over 7.6 CISA adds Microsoft Windows and Rejetto HTTP File Server bugs to its Known Exploited Vulnerabilities catalog Evolve Bank data breach impacted over 7.6 Patch it now!

Data breaches 118

Data breaches VPN Malware Banking 118

Security Boulevard

MARCH 24, 2025

Researchers name several countries as potential Paragon spyware customers TechCrunch The Citizen Lab, a group of academics and security researchers, recently published a report indicating the governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore are "likely" customers of Israeli spyware maker Paragon Solutions.

Surveillance 75

Surveillance Telecommunications Data breaches Spyware 75

Security Affairs

NOVEMBER 24, 2024

CISA adds Apple, Oracle Agile PLM bugs to its Known Exploited Vulnerabilities catalog More than 2,000 Palo Alto Networks firewalls hacked exploiting recently patched zero-days Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office US DoJ charges five alleged members of the Scattered Spider cybercrime gang Threat actor (..)

Cybercrime 71

Cybercrime Artificial Intelligence Hacking VPN 71

eSecurity Planet

FEBRUARY 17, 2025

Visit Microsoft Defender Pros & Cons Pros Cons Free Limited advanced features Integration with windows No VPN feature Automatic updates Only supports Windows Key Features Real-time threat protection: Microsoft Defender actively monitors your system for viruses, malware, and other threats. It supports Windows OS only. 5 Pricing: 4.7/5

Antivirus 67

Antivirus Identity Theft VPN Spyware 67

Security Affairs

SEPTEMBER 10, 2023

US CISA added critical Apache RocketMQ flaw to its Known Exploited Vulnerabilities catalog Ragnar Locker gang leaks data stolen from the Israel’s Mayanei Hayeshua hospital North Korea-linked threat actors target cybersecurity experts with a zero-day Zero-day in Cisco ASA and FTD is actively exploited in ransomware attacks Nation-state actors (..)

DDOS 130

DDOS Data breaches VPN Cybercrime 130

Security Affairs

APRIL 21, 2024

carmaker with phishing attacks Law enforcement operation dismantled phishing-as-a-service platform LabHost Previously unknown Kapeka backdoor linked to Russian Sandworm APT Cisco warns of a command injection escalation flaw in its IMC.

Data breaches 131

Data breaches Phishing Ransomware Malware 131

Security Affairs

AUGUST 7, 2022

of its users due to the exposure of salted password hashes Twitter confirms zero-day used to access data of 5.4 of its users due to the exposure of salted password hashes Twitter confirms zero-day used to access data of 5.4

Spyware 142

Spyware Manufacturing Small Business Surveillance 142

Security Boulevard

FEBRUARY 17, 2025

The more accounts you have, the bigger your attack surface and potential exposure to data breaches. Google's reCAPTCHA is not only useless, it's also basically spyware Techspot This study demonstrates Google's reCAPTCHA v2 and v3 are flawed and don't actually keep out bots. Tips for finding old accounts.

Surveillance 52

Surveillance Data breaches VPN Malware 52

Security Affairs

FEBRUARY 11, 2024

Gov imposes visa restrictions on individuals misusing Commercial Spyware HPE is investigating claims of a new security breach Experts warn of a surge of attacks targeting Ivanti SSRF flaw How to hack the Airbus NAVBLUE Flysmart+ Manager Crooks stole $25.5

Spyware 125

Spyware Surveillance DDOS Identity Theft 125

Security Affairs

DECEMBER 3, 2022

Google fixed the ninth actively exploited Chrome zeroday this year A new Linux flaw can be chained with other two bugs to gain full root privileges Attack of drones: airborne cybersecurity nightmare Cuba Ransomware received over $60M in Ransom payments as of August 2022 Android Keyboard Apps with 2 Million downloads can remotely hack your device New (..)

Spyware 98

Spyware Data breaches VPN Hacking 98

Security Affairs

JANUARY 21, 2024

Admin of the BreachForums hacking forum sentenced to 20 years supervised release Russia-linked Midnight Blizzard APT hacked Microsoft corporate emails VF Corp December data breach impacts 35 million customers China-linked APT UNC3886 exploits VMware zero-day since 2021 Ransomware attacks break records in 2023: the number of victims rose by 128% U.S.

Artificial Intelligence 129

Artificial Intelligence Hacking Firewall VPN 129

Security Affairs

JUNE 21, 2020

Maze ransomware gang hacked M&A firm Threadstone Advisors LLP Ransomware attack disrupts operations at Australian beverage company Lion Tech firms suspend use of ‘biased facial recognition technology Accessories giant Claires is the victim of a Magecart attack, credit card data exposed Black Kingdom ransomware operators exploit Pulse VPN flaws (..)

DDOS 104

DDOS Spyware Advertising Ransomware 104

eSecurity Planet

SEPTEMBER 26, 2024

Surfshark and ExpressVPN are both popular VPNs for individuals and home office setups. Surfshark is a highly affordable solution with many useful features for basic and advanced VPN needs. 5 SurfShark is a VPN solution offering multiple privacy and security features besides private networking. month • SurfShark One: $3.39/month

VPN 57

VPN Password Management Internet Internet 57

Malwarebytes

JUNE 3, 2024

The Ticketmaster “breach”—what you need to know Ticketmaster confirms customer data breach How to tell if a VPN app added your Windows device to a botnet Beware of scammers impersonating Malwarebytes How to turn off location tracking on iOS and iPadOS How to turn off location tracking on Android pcTattletale spyware leaks database containing (..)

Spyware 75

Spyware Data breaches VPN Ransomware 75

Hot for Security

JUNE 14, 2021

A vulnerability in WhatsApp allegedly allows threat actors to install spyware onto iPhones. Bitdefender Mobile Security gives your iPhone or Android device full protection against mobile-specific threats, plus a secure VPN for a fast, anonymous and safe experience while surfing the web. Weaponizing hype.

Mobile 132

Mobile Malware Spyware Media 132

Security Affairs

OCTOBER 13, 2019

UK NCSC agency warns of APTs exploiting Enterprise VPN vulnerabilities. Data from Sephora and StreetEasy data breaches added to HIBP. Multiple APT groups are exploiting VPN vulnerabilities, NSA warns. Amnesty claims that 2 Morocco rights advocates were targeted by NSO Group spyware.

VPN 77

VPN Data breaches Spyware Advertising 77

Identity IQ

FEBRUARY 18, 2021

Some hackers even set up rogue hotspots with the sole intention of luring unsuspecting device users and stealing their valuable data. Data Breaches. A data breach is any unauthorized access to a company’s data that results in the exposure of sensitive information to an untrusted environment.

Identity Theft 119

Identity Theft Passwords Data breaches Scams 119

Security Affairs

DECEMBER 5, 2021

Hundreds of vulnerabilities in common Wi-Fi routers affect millions of users German BSI agency warns of ransomware attacks over Christmas holidays Cuba ransomware gang hacked 49 US critical infrastructure organizations CISA warns of vulnerabilities in Hitachi Energy products NSO Group spyware used to compromise iPhones of 9 US State Dept officials (..)

Spyware 106

Spyware Ransomware Hacking VPN 106

Security Affairs

NOVEMBER 14, 2021

Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server GravityRAT returns disguised as an end-to-end encrypted chat app Intel and AMD address high severity vulnerabilities in products and drivers New evolving Abcbot DDoS botnet targets Linux systems Retail giant Costco discloses data breach, payment card data exposed (..)

Spyware 55

Spyware Data breaches Ransomware Hacking 55

eSecurity Planet

OCTOBER 10, 2024

Unlike traditional antivirus programs, which primarily focus on viruses, anti-malware solutions address a wider array of threats, including spyware, adware, ransomware, and trojans. While primarily focused on Mac security, it may lack some extensive features in more comprehensive suites like VPN services.

Software 62

Software Malware Antivirus Spyware 62

Security Boulevard

FEBRUARY 10, 2025

Spyware maker Paragon terminates contract with Italian government: media reports TechCrunch This campaign was included in Week 5 of the Privacy Roundup , where Meta disrupted a campaign on WhatsApp targeting approximately 100 users with Paragon Spyware. Privacy Services Mullvad VPN for Windows on ARM is here!

Spyware 52

Spyware Surveillance Government Data breaches 52

Security Boulevard

MAY 3, 2021

Such personal data is unlikely to have changed for the vast majority of people in the last couple of years, therefore this data is of concern to its owners, and also remains of good value to scammers. Facebook faces a privacy regulation investigation over this data breach. The Ransomware Scourge.

Ransomware 124

Ransomware Passwords Scams Government 124

eSecurity Planet

MAY 2, 2024

Most organizations express confidence in their current status and budgets, but also expect to experience at least one data breach in 2024. Compromised Credentials Compromised identities from phishing, info stealers, keyloggers, and bad password habits provide the entry point for most ransomware attacks and data breaches.

Cybersecurity 121

Cybersecurity DDOS Penetration Testing Ransomware 121

Security Affairs

NOVEMBER 17, 2019

Tracking Iran-linked APT33 group via its own VPN networks. WhatsApp flaw CVE-2019-11931 could be exploited to install spyware. Experts found privilege escalation issue in Symantec Endpoint Protection. Flaws in Qualcomm chips allows stealing private from devices. A new sophisticated JavaScript Skimmer dubbed Pipka used in the wild.

DDOS 74

DDOS Spyware Advertising Ransomware 74

Pen Test Partners

MAY 26, 2025

Our investigation revealed spyware with call-forwarding and banking credential capture, likely installed via custom firmware on the device. We traced the entry to an outdated Ivanti VPN, correlated DNS to malware domains (like iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com), and observed 7zip activity linked to data staging.

Banking 64

Banking VPN Ransomware Scams 64

eSecurity Planet

MARCH 14, 2023

For example, malware, spyware, adware, computer worms, botnets, trojan horses and similar malware do not normally impact network equipment (routers, firewalls, etc.) However, as data sharing and access becomes more common, the risk of an intentional or unintentional data breach through non-employees also continues to grow.

Network Security 98

Network Security Firewall Penetration Testing Encryption 98

eSecurity Planet

JUNE 8, 2023

Email security should fit into a broader security strategy to reduce the risks of attack on an organization and the related risks of data breaches, operational disruption, and financial loss. Email Security Best Practices Ultimately, the point of any security is to reduce risk for the organization. zip, etc.).

Firewall 80

Firewall DNS Authentication Malware 80

eSecurity Planet

SEPTEMBER 11, 2023

Network security is another big theme this week: Whether it’s a VPN connection or an enterprise-grade networking platform, patch management solutions typically won’t update network devices, so admins may need to keep an eye on any flaws there too. of the Atlas VPN Linux client. via port 8076. version of Superset.

VPN 113

VPN Authentication Firmware Phishing 113

Security Affairs

AUGUST 11, 2024

CISA adds Apache OFBiz and Android kernel bugs to its Known Exploited Vulnerabilities catalog Russian cyber spies stole data and emails from UK government systems 0.0.0.0

Spyware 118

Spyware Ransomware Hacking Government 118