Security Affairs newsletter Round 211

Security Affairs newsletter Round 211 – News of the week

Pierluigi Paganini April 28, 2019

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

Kindle Edition

Paper Copy

Once again thank you!

60 Million records of LinkedIn users exposed online

INPIVX hidden service, a new way to organize ransomware attacks

Ride-Hailing Company operating in Iran exposes data of Iranian Drivers

A flaw in Shopify API flaw exposed revenue and traffic data of thousands of stores

Campaign leverages Bit.ly, BlogSpot, and Pastebin to distribute RevengeRAT

jQuery JavaScript library flaw opens the doors for attacks on hundreds of millions of websites

Russian Twitter bot activity increased in the wake Mueller report release

Bodybuilding.com forces password reset after a security breach

EmCare reveals patient and employee data were hacked

FireEye experts found source code for CARBANAK malware on VirusTotal

Iran-linked APT34: Analyzing the webmask project

Targeted Attacks hit multiple embassies with Trojanized TeamViewer

Kaspersky speculates the involvement of ShadowPad attackers in Operation ShadowHammer

OilRig APT uses Karkoff malware along with DNSpionage in recent attacks

Stuart City is the new victim of the Ryuk Ransomware

The Russian Shadow in Eastern Europe: Gamaredon ‘s Ukrainian MOD Campaign

Zero-day vulnerability in Oracle WebLogic

A flaw in Rockwell Controller allows attackers to redirect users to malicious Sites

Britain ‘Approves Huawei role in building ‘non-core parts for 5G Network

Crooks abuse GitHub platform to host phishing kits

Flaws in Social Warfare plugin actively exploited in the wild

Beapy Cryptojacking campaign leverages EternalBlue exploit to spread

Millions of IoT Devices exposed to remote hacks due to iLnkP2P flaws

The strengths and weaknesses of different VPN protocols

Cisco discovered several flaws in Sierra Wireless AirLink ES450 devices

Docker Hub Database hacked, 190,000 users impacted

Experts release PoC exploit for unpatched flaw in WordPress WooCommerce Extension

Magecart skimmer scripts hosted on GitHub infected 200+ e-commerce sites

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – newsletter, cybersecurity)

[adrotate banner=”5″]

[adrotate banner=”13″]

Cybersecurity Newsletter Pierluigi Paganini Security Affairs

Pierluigi Paganini July 29, 2025

Microsoft uncovers macOS flaw allowing bypass TCC protections and exposing sensitive data

Pierluigi Paganini July 28, 2025

Security Affairs newsletter Round 211 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

you might also like

Microsoft uncovers macOS flaw allowing bypass TCC protections and exposing sensitive data

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

leave a comment

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Microsoft uncovers macOS flaw allowing bypass TCC protections and exposing sensitive data

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover

Scattered Spider targets VMware ESXi in using social engineering

China-linked group Fire Ant exploits VMware and F5 flaws since early 2025

QUICK LINKS

Security Affairs newsletter Round 211 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

you might also like

Microsoft uncovers macOS flaw allowing bypass TCC protections and exposing sensitive data

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

leave a comment

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Microsoft uncovers macOS flaw allowing bypass TCC protections and exposing sensitive data

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover

Scattered Spider targets VMware ESXi in using social engineering

China-linked group Fire Ant exploits VMware and F5 flaws since early 2025

Subscribe to my email list and stay
up-to-date!