Security Affairs newsletter Round 236

Pierluigi Paganini October 20, 2019

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog.

A new Mac malware dubbed Tarmac has been distributed via malvertising campaigns

Alabama Hospital chain paid ransom to resume operations after ransomware attack

Charming Kitten Campaign involved new impersonation methods

Imperva explains how hackers stole AWS API Key and accessed to customer data

Is Emotet gang targeting companies with external SOC?

Privacy advocates criticize Apple for sharing some users browsing data with Tencent

Talos experts found 11 flaws in Schneider Electric Modicon Controllers

Click2Mail suffered a data breach that potentially impacts 200,000 registrants

Global Shipping and mailing services firm Pitney Bowes hit by ransomware attack

sudo flaw allows any users to run commands as Root on Linux

Winnti Group was planning a devastating supply-chain attack against Asian manufacturer

Adobe out-of-band security updates address 82 flaws in 3 products

Approaching the Reverse Engineering of a RFID/NFC Vending Machine

Chinese-speaking cybercrime gang Rocke changes tactics

Signature update for Symantec Endpoint protection crashed many device

Critical and high-severity flaws addressed in Cisco Aironet APs

Cryptocurrency miners infected more than 50% of the European airport workstations

Graboid the first-ever Cryptojacking worm that targets Docker Hub

International operation dismantled largest Dark Web Child abuse site

M6 Group, largest France private multimedia group, hit by ransomware attack

China-linked cyberspies Turbine PANDA targeted aerospace firms for years

Pitney Bowes revealed that its systems were infected with Ryuk Ransomware

Researcher released PoC exploit code for CVE-2019-2215 Android zero-day flaw

Systems at Ingredients provider Ingredion infected with a Malware

Trojanized Tor Browser targets shoppers of Darknet black marketplaces

A critical Linux Wi-Fi bug could be exploited to fully compromise systems

Emsisoft released a free decryption tool for the STOP (Djvu) ransomware

Hundreds of millions of UC Browser Android Users Exposed to MiTM Attacks. Again.

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – iCloud, zero-day)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini July 08, 2025

Microsoft Patch Tuesday security updates for July 2025 fixed a zero-day

Pierluigi Paganini July 08, 2025

Security Affairs newsletter Round 236

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

you might also like

Microsoft Patch Tuesday security updates for July 2025 fixed a zero-day

Italian police arrested a Chinese national suspected of cyberespionage on a U.S. warrant

leave a comment

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Microsoft Patch Tuesday security updates for July 2025 fixed a zero-day

Italian police arrested a Chinese national suspected of cyberespionage on a U.S. warrant

U.S. CISA adds MRLG, PHPMailer, Rails Ruby on Rails, and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog

IT Worker arrested for selling access in $100M PIX cyber heist

New Batavia spyware targets Russian industrial enterprises

QUICK LINKS

Security Affairs newsletter Round 236

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

you might also like

Microsoft Patch Tuesday security updates for July 2025 fixed a zero-day

Italian police arrested a Chinese national suspected of cyberespionage on a U.S. warrant

leave a comment

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Microsoft Patch Tuesday security updates for July 2025 fixed a zero-day

Italian police arrested a Chinese national suspected of cyberespionage on a U.S. warrant

U.S. CISA adds MRLG, PHPMailer, Rails Ruby on Rails, and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog

IT Worker arrested for selling access in $100M PIX cyber heist

New Batavia spyware targets Russian industrial enterprises

Subscribe to my email list and stay
up-to-date!