Security Affairs newsletter Round 408 by Pierluigi Paganini

Pierluigi Paganini February 26, 2023

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

If you want to also receive for free the newsletter with the international press subscribe here.

Clasiopa group targets materials research in Asia

CERT of Ukraine says Russia-linked APT backdoored multiple govt sites

UK won the Military Cyberwarfare exercise Defence Cyber Marvel 2 (DCM2)

CISA warns of disruptive attacks amid the anniversary of Russia’s invasion of Ukraine

Highly evasive cryptocurrency miner targets macOS

Hackers are actively exploiting CVE-2022-47966 flaw in Zoho ManageEngine

The alleged author of NLBrute Malware was extradited to US from Georgia

Fortinet FortiNAC CVE-2022-39952 flaw exploited in the wild hours after the release of PoC exploit

The European Commission has banned its staff from using TikTok over security concerns

Many cyber operations conducted by Russia are yet to be publicly disclosed, says Dutch intelligence
The number of devices infected by the MyloBot botnet is rapidly increasing

Experts found a large new class of bugs ‘class’ in Apple devices

CISA adds IBM Aspera Faspex and Mitel MiVoice to Known Exploited Vulnerabilities Catalog

VMware addressed a critical bug in Carbon Black App Control

PoC exploit code for critical Fortinet FortiNAC bug released online

HardBit ransomware gang adjusts their demands so the insurance company would cover the ransom cost

Resecurity warns about cyber-attacks on data center service providers

Stealc, a new advanced infostealer appears in the threat landscape

A sophisticated threat actor hit cryptocurrency exchange Coinbase

Samsung announces Message Guard feature to neutralize zero-click attacks
Social engineering, deception becomes increasingly sophisticated

Lockbit ransomware gang hit the Portuguese municipal water utility Aguas do Porto

Frebniis malware abuses Microsoft IIS feature to create a backdoor

ENISA and CERT-EU warns Chinese APTs targeting EU organizations

Hackers disclose Atlassian data after the theft of an employee’s credentials

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

Pierluigi Paganini July 28, 2025

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Pierluigi Paganini July 28, 2025

Security Affairs newsletter Round 408 by Pierluigi Paganini

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

you might also like

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover

leave a comment

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover

Scattered Spider targets VMware ESXi in using social engineering

China-linked group Fire Ant exploits VMware and F5 flaws since early 2025

Allianz Life data breach exposed the data of most of its 1.4M customers

QUICK LINKS

Security Affairs newsletter Round 408 by Pierluigi Paganini

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

you might also like

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover

leave a comment

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover

Scattered Spider targets VMware ESXi in using social engineering

China-linked group Fire Ant exploits VMware and F5 flaws since early 2025

Allianz Life data breach exposed the data of most of its 1.4M customers

Subscribe to my email list and stay
up-to-date!