Categories: Breaking News

Security Affairs newsletter Round 42 – News of the week

newsletternewsletter

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs
Analyzing Ransom32, the first JavaScript ransomware variant
@FFD8FFDB Twitter bot spies on poorly configured cameras
Turkish hackers took over a Russian Govt Instagram account
Security Affairs newsletter Round 41 – News of the week
Mac OS X is the software with most vulnerabilities in 2015
BlackEnergy targets Ukrainian news media and electric industry
China hacked thousands of Hotmail accounts belonging to Tibetan and Uighur minorities
Discovered a new DB containing more than 56 million records of US Voters
The Sony PlayStation Network is down worldwide
Samsung presented GAIA, a security solution for Smart TVs
Black Hornet, the military nano drone small like an insect
Hackers cause power outage with malware in Ukraine. Is it an Information warfare act?
Dating scam package offered in the underground
Zerodium offers $100,000 for bypass Flash Player heap isolation
Final rule implements the Executive Order 13694. US can apply economic sanctions in response to cyber attacks
Security experts disclosed SCADAPASS, a list of default credentials for ICS and SCADA systems
Phantom Squad took credit for the PlayStation network outage
The Islamic State has a R&D where prepares missiles and hi-tech bombs
Silent Circle promptly patched a critical flaw in the Blackphone I
Resume files locked by Linux Encoder with Bitdefender decryption tool
Unpatched Drupal flaws open websites to attacks
Authors digitally signed Spymel Trojan to evade detection
Time Warner Cable security breach may have exposed 320K customers
PrivaTegrity might bring an end to Crypto Wars
Rovnix malware is threatening Japanese bank customers
Experts revealed that security camera vendors lack of security by design
iSight Partners says the Sandworm APT is involved Ukrainian power outage
DDoS attack on BBC may have reached 602Gbps, never so powerful
Clickjacking Campaign exploits the European Cookie Law
Islamic State launches the Kybernetiq magazine for cyber jihadists

I desire to inform you that Security Affairs is now open to sponsored content.
I’ll offer the opportunity to:
•    Insert banners of various sizes in all the posts on Security Affairs.
•    Publish sponsored posts written by the customers that can include any kind of commercial reference.
•    Arrange a monthly/quarterly/annual campaign (for big customers) to advertise customers’ activities and discoveries.
For more info contact me at pierluigi.paganini@securityaffairs.co
Thanks for supporting Security Affairs.

Email address: Hurry up, subscribe to the newsletter, next Sunday you will receive all the news directly in your inbox.

Once again thank you!

Pierluigi Paganini

(Security Affairs – Newsletter, SecurityAffairs)

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Published by
Pierluigi Paganini
Tags: cyber securityNewsletterPierluigi PaganiniSecurity Affairs
9 years ago

Recent Posts

Over 80,000 servers hit as Roundcube RCE bug gets rapidly exploited

A critical remote code execution (RCE) vulnerability in Roundcube was exploited days after patch, impacting…

7 hours ago

A flaw could allow recovery of the phone number associated with any Google account

A vulnerability could allow recovery of the phone number associated with a Google account by…

11 hours ago

Texas Department of Transportation (TxDOT) data breach exposes 300,000 crash reports

Hackers breached Texas DOT (TxDOT), stealing 300,000 crash reports with personal data from its Crash…

22 hours ago

SAP June 2025 Security Patch Day fixed critical NetWeaver bug

SAP fixed a critical NetWeaver flaw that let attackers bypass authorization and escalate privileges. Patch…

1 day ago

U.S. CISA adds RoundCube Webmail and Erlang Erlang/OTP SSH server flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds RoundCube Webmail and Erlang Erlang/OTP SSH server flaws…

1 day ago

Mirai botnets exploit Wazuh RCE, Akamai warned

Mirai botnets are exploiting CVE-2025-24016, a critical remote code execution flaw in Wazuh servers, Akamai…

1 day ago