Security Affairs newsletter Round 234

Pierluigi Paganini October 06, 2019

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog.

Once again thank you!

Hacker claims to have stolen over 218M Zynga ‘Words with Friends Gamers records

Masad Stealer Malware exfiltrates data via Telegram

Phishers continue to abuse Adobe and Google Open Redirects

WhiteShadow downloader leverages Microsoft SQL to retrieve multiple malware

A new critical flaw in Exim exposes email servers to remote attacks

Arcane Stealer V, a threat for lower-skilled adversaries that scares experts

eGobbler ‘s malvertising campaign hijacked over 1 billion ad impressions

Exclusive: MalwareMustDie analyzes a new IoT malware dubbed Linux/ AirDropBot

Irans oil minister orders ‘Full Alert for oil sector on against attacks

Microsoft will add new file types to the list of blocked ones in Outlook on the Web

A new Adwind variant involved in attacks on US petroleum industry

Danish company Demant expects to incur losses of up to $95 after cyber attack

Danish company Demant expects to incur losses of up to $95 Million after cyber attack

Frequent VBA Macros used in Office Malware

Gucci IOT Bot Discovered Targeting European Region

Hackers breached one of Comodo Forums, 245,000 users impacted

Singapore presented the Operational Technology (OT) Cybersecurity Masterplan

Teheran: U.S. has started ‘Cyber War against Iran

Tridium Niagara framework affected by 2 flaws in BlackBerry QNX OS

Asics apologizes after pornography ran on screens at central store in Auckland for hours

Expert disclosed details of remote code execution flaw in Whatsapp for Android

Experts found 20 Million tax records for Russian citizens exposed online

Former American Express employee under investigation for customers data abuse

Ten hospitals in Alabama and Australia have been hit with ransomware attacks

Zendesk 2016 security breach may impact Uber, Slack, and other organizations

6 cyber-espionage campaigns since 2013 attributed to PKPLUG China-linked group

Dutch police shut down bulletproof service hosting tens of DDoS botnets

FBI warns about high-impact Ransomware attacks on U.S. Organizations

Ukrainian police dismantled a bot farm involved in multiple spam campaigns

US Secretary of State Mike Pompeo warns Italy over 5G Chinese equipment supply

Egypt regularly spies on opponents and activists with mobile apps

Project Zero researcher found unpatched Android zero-day likely exploited by NSO group

The sLoad Threat: Ten Months Later

Magecart hackers are expanding their operations

NSA Launches New Cybersecurity Directorate

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – newsletter)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini July 28, 2025

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Pierluigi Paganini July 28, 2025

Security Affairs newsletter Round 234

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

you might also like

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover

leave a comment

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover

Scattered Spider targets VMware ESXi in using social engineering

China-linked group Fire Ant exploits VMware and F5 flaws since early 2025

Allianz Life data breach exposed the data of most of its 1.4M customers

QUICK LINKS

Security Affairs newsletter Round 234

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs

you might also like

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover

leave a comment

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog

Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover

Scattered Spider targets VMware ESXi in using social engineering

China-linked group Fire Ant exploits VMware and F5 flaws since early 2025

Allianz Life data breach exposed the data of most of its 1.4M customers

Subscribe to my email list and stay
up-to-date!