Security Affairs newsletter Round 387

newsletter

newsletter

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

BlackByte Ransomware abuses vulnerable driver to bypass security solutions

Unpatched remote code execution flaw in Zimbra Collaboration Suite actively exploited

VMware fixed a high-severity bug in vCenter Server

Fortinet urges customers to immediately fix a critical authentication bypass flaw in FortiGate and FortiProxy

Hacker stole $566 million worth of Binance Coins from Binance Bridge

LilithBot Malware, a new MaaS offered by the Eternity Group

Watch out, a bug in Linux Kernel 5.19.12 can damage displays on Intel laptops

Cisco fixed two high-severity bugs in Communications, Networking Products
City of Tucson Data Breach impacted 123,500 individuals

19-Year-Old man arrested for misusing leaked record from Optus Breach

“Egypt Leaks” – Hacktivists are Leaking Financial Data

Avast releases a free decryptor for some Hades ransomware variants

New Maggie malware already infected over 250 Microsoft SQL servers

Telstra Telecom discloses data breach impacting former and current employees

OnionPoison: malicious Tor Browser installer served through a popular Chinese YouTube channel

A flaw in the Packagist PHP repository could have allowed supply chain attacks

Lazarus APT employed an exploit in a Dell firmware driver in recent attacks

Linux Cheerscrypt ransomware is linked to Chinese DEV-0401 APT group
Microsoft mitigations for recently disclosed Exchange zero-days can be easily bypassed

Trojanized Comm100 Live Chat app installer distributed a JavaScript backdoor

RansomEXX gang claims to have hacked Ferrari and leaked online internal documents

Finnish intelligence warns of Russia’s cyberespionage activities

Reflected XSS bugs in Canon Medical ’s Vitrea View could expose patient info

BlackCat ransomware gang claims to have hacked US defense contractor NJVC

German police identified a gang that stole €4 million via phishing attacks

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Next Everest gang demands $200K for data stolen from South Africa state-owned electricity company ESKOM »

Previous « CommonSpirit hospital chains hit by ransomware, patients are facing problems

Published by

Pierluigi Paganini

Tags: Hackinghacking newsinformation security newsIT Information SecurityPierluigi PaganiniSecurity AffairsSecurity News

3 years ago

Recent Posts

Hacking

Qualcomm fixed three zero-days exploited in limited, targeted attacks

Qualcomm addressed three zero-day vulnerabilities that, according to the company, have been exploited in limited,…

7 hours ago

Cyber Crime

Police took down several popular counter-antivirus (CAV) services, including AvCheck

On May 27, 2025, authorities seized crypting service sites (including AvCheck, Cryptor, and Crypt.guru) used…

9 hours ago

Cyber Crime

A cyberattack hit hospitals operated by Covenant Health

A cyberattack hit three hospitals operated by Covenant Health, forcing them to shut down all…

16 hours ago

Security

Experts published a detailed analysis of Cisco IOS XE WLC flaw CVE-2025-20188

Technical details about a critical Cisco IOS XE WLC flaw (CVE-2025-20188) are now public, raising…

16 hours ago

Security

Two flaws in vBulletin forum software are under attack

Experts found two vulnerabilities in the vBulletin forum software, one of which is already being…

1 day ago

Malware

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 47

Security Affairs Malware newsletter includes a collection of the best articles and research on malware…

1 day ago