Security Affairs - Page 176 of 1823 - Read, think, share … Security is everyone's responsibility

LATEST NEWS

VIEW ALL

Chinese experts earned $20,000 for reporting a Chrome Sandbox Escape

Pierluigi Paganini March 31, 2021

Researchers have reported to Google a sandbox escape vulnerability in the Chrome web browser to Google that awarded them $20,000. Experts from the Chinese cybersecurity company Qihoo 360 have repo ...

Email accounts of DHS members were compromised in the SolarWinds hack

Pierluigi Paganini March 31, 2021

Russian hackers accessed the email accounts of US Department of Homeland Security (DHS) officials as a result of the SolarWinds hack. Russia-linked hackers were able to access email accounts belon ...

IETF deprecates TLS 1.0 and TLS 1.1, update to latest versions

Pierluigi Paganini March 31, 2021

IETF has formally deprecated the TLS 1.0 and TLS 1.1 cryptographic protocols because they lack support for recommended cryptographic algorithms and mechanisms The Internet Engineering Task Force ( ...

VMware addresses SSRF flaw in vRealize Operations that allows stealing admin credentials

Pierluigi Paganini March 30, 2021

VMware addressed a high severity vulnerability in vRealize Operations that could allow stealing admin credentials from vulnerable servers. VMware has published security updates to address multipl ...

1
2
1757
1758
1759
1760
1761
4554
4555
4556

most popular

VIEW ALL

Social Networks

Facebook is experiencing a global outage

March 03, 2026

Ariomex, Iran-based crypto exchange, suffers data leak

March 03, 2026

Oracle EBS 2025 campaign impacts Madison Square Garden, sensitive data leaked

March 03, 2026

Phishing campaign exploits OAuth redirection to bypass defenses

March 03, 2026

Android devices hit by exploited Qualcomm flaw CVE-2026-21385

March 03, 2026

recent articles

Social Networks

Facebook is experiencing a global outage

Facebook is experiencing a global outage since 4:15 PM ET, with users reporting they cannot access their accounts. Facebook users worldwide report problems while attempting to access their acc ...

Pierluigi Paganini March 03, 2026

Crypto

Ariomex, Iran-based crypto exchange, suffers data leak

Resecurity says Iran’s Ariomex crypto exchange suffered a data leak exposing user and transaction data from 2022 to 2025. Resecurity (USA) reports that Ariomex's database, one of Iran's cryptocu ...

Pierluigi Paganini March 03, 2026

Cyber Crime

Oracle EBS 2025 campaign impacts Madison Square Garden, sensitive data leaked

Madison Square Garden confirmed a data breach tied to the 2025 Oracle E-Business Suite hacking campaign. Madison Square Garden (MSG) has confirmed it was affected by a data breach linked to the 20 ...

Pierluigi Paganini March 03, 2026

Hacking

Phishing campaign exploits OAuth redirection to bypass defenses

Microsoft researchers warn that threat actors abuse OAuth redirects to target government users and deliver malware. Microsoft has warned of phishing campaigns targeting government and public-secto ...

Pierluigi Paganini March 03, 2026

Security

Android devices hit by exploited Qualcomm flaw CVE-2026-21385

Google confirms that the Qualcomm Android vulnerability CVE-2026-21385 was exploited in real-world attacks. Google has confirmed that CVE-2026-21385 (CVSS score of 7.8), a high-severity vulnerabil ...

Pierluigi Paganini March 03, 2026

Security

Chrome security flaw enabled spying via Gemini Live assistant

A Google Chrome vulnerability lets malicious extensions hijack Gemini Live to spy on users and steal sensitive files. Researchers at Palo Alto Networks found a Chrome vulnerability, tracked as CVE ...

Pierluigi Paganini March 03, 2026

APT

Middle east crisis prompts UK NCSC warning on potential Iranian cyber activity

UK’s NCSC warns of potential Iranian cyberattacks as Middle East tensions rise, urging vigilance from exposed organizations. The UK’s National Cyber Security Centre (NCSC) has warned organizat ...

Pierluigi Paganini March 02, 2026

Security

Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch

Russia-linked APT28 reportedly exploited MSHTML zero-day CVE-2026-21513 before Microsoft patched it, a high-severity bypass flaw. Akamai reports that Russia-linked APT28 may have exploited CVE-202 ...

Pierluigi Paganini March 02, 2026

APT

APT37 combines cloud storage and USB implants to infiltrate air-gapped systems

North Korea-linked APT 37 used Zoho WorkDrive and USB malware to breach air-gapped networks in the Ruby Jumper campaign. North Korean group ScarCruft (aka APT37, Reaper, and Group123) deployed ne ...

Pierluigi Paganini March 02, 2026

Cyber Crime

Europol’s Project Compass nets 30 arrests in crackdown on “The Com”

Europol’s Project Compass led to 30 arrests targeting 'The Com' network, identifying 62 victims and protecting four children from harm. A yearlong operation, code-named Project Compass, led by E ...

Pierluigi Paganini March 02, 2026

Hacking

ClawJacked flaw exposed OpenClaw users to data theft

“ClawJacked” flaw let malicious sites hijack OpenClaw AI agents to steal data; patch released in version 2026.2.26. A high-severity vulnerability called ClawJacked in OpenClaw allowed maliciou ...

Pierluigi Paganini March 02, 2026

Cyber Crime

Ukrainian hacker pleads guilty to running OnlyFake AI ID scam site

Ukrainian citizen Yurii Nazarenko admitted running OnlyFake, an AI-driven site that sold over 10,000 fake IDs worldwide. Ukrainian man Yurii Nazarenko pleaded guilty to operating OnlyFake, an AI-p ...

Pierluigi Paganini March 02, 2026

Data Breach

ShinyHunters leaked the full Odido dataset

Cybercrime group ShinyHunters leaked the full Odido dataset, the Netherlands is facing the biggest data leak in its history. Odido is a Dutch telecommunications company and one of the largest mobi ...

Pierluigi Paganini March 01, 2026

Artificial Intelligence

Claude code abused to steal 150GB in cyberattack on Mexican agencies

Hackers abused Claude Code to build exploits and steal 150GB of data in a cyberattack targeting Mexican government systems. Hackers abused Anthropic’s Claude Code AI assistant to develop exploit ...

Pierluigi Paganini March 01, 2026

Malware

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 86

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Technical Deep Dive: The Monero Mining C ...

Pierluigi Paganini March 01, 2026

Uncategorized

CVE-2025-64328 exploitation impacts 900 Sangoma FreePBX instances

About 900 Sangoma FreePBX systems were infected with web shells after attackers exploited a command injection flaw. Hundreds of Sangoma FreePBX instances are still infected with web shells followi ...

Pierluigi Paganini March 01, 2026

Security

Security Affairs newsletter Round 565 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly Security ...

Pierluigi Paganini March 01, 2026

Data Breach

Canadian Tire 2025 data breach impacts 38 million users

A data breach at Canadian Tire exposed personal data from over 38 million accounts, including contact details and encrypted passwords. More than 38 million accounts were affected by an October 202 ...

Pierluigi Paganini February 28, 2026

Malware

Microsoft warns of RAT delivered through trojanized gaming utilities

Attackers spread trojanized gaming tools to deliver a stealthy RAT using PowerShell, LOLBins, and Defender evasion tactics. Threat actors are tricking users into running trojanized gaming utilitie ...

Pierluigi Paganini February 28, 2026

Mobile

Aeternum botnet hides commands in Polygon smart contracts

Aeternum botnet uses Polygon blockchain smart contracts for C&C, making its infrastructure harder to detect and disrupt. Qrator Labs researchers uncovered Aeternum, a botnet that runs its comm ...

Pierluigi Paganini February 27, 2026