Security Affairs - Page 831 of 1822 - Read, think, share … Security is everyone's responsibility

LATEST NEWS

VIEW ALL

DHS CISA orders federal agencies to fix Zerologon flaw by Monday

Pierluigi Paganini September 21, 2020

DHS CISA issued an emergency directive to tells government agencies to address the Zerologon vulnerability (CVE-2020-1472) by Monday. The Department of Homeland Security's CISA issued an emergency ...

Mozi Botnet is responsible for most of the IoT Traffic

Pierluigi Paganini September 20, 2020

The Mozi botnet accounted for 90% of the IoT network traffic observed between October 2019 and June 2020, IBM reported. Mozi is an IoT botnet that borrows the code from Mirai variants and the Gafg ...

NCSC warns of a surge in ransomware attacks on education institutions

Pierluigi Paganini September 20, 2020

The U.K. National Cyber Security Centre (NCSC) has issued an alert about a surge in ransomware attacks targeting education institutions. The U.K. National Cyber Security Centre (NCSC), has issued ...

Security Affairs newsletter Round 282

Pierluigi Paganini September 20, 2020

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. Gaming hardware manufacturer Razer suffere ...

1
2
1970
1971
1972
1973
1974
4553
4554
4555

most popular

VIEW ALL

Android devices hit by exploited Qualcomm flaw CVE-2026-21385

March 03, 2026

Chrome security flaw enabled spying via Gemini Live assistant

March 03, 2026

Middle east crisis prompts UK NCSC warning on potential Iranian cyber activity

March 02, 2026

Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch

March 02, 2026

APT37 combines cloud storage and USB implants to infiltrate air-gapped systems

March 02, 2026

recent articles

Security

Android devices hit by exploited Qualcomm flaw CVE-2026-21385

Google confirms that the Qualcomm Android vulnerability CVE-2026-21385 was exploited in real-world attacks. Google has confirmed that CVE-2026-21385 (CVSS score of 7.8), a high-severity vulnerabil ...

Pierluigi Paganini March 03, 2026

Security

Chrome security flaw enabled spying via Gemini Live assistant

A Google Chrome vulnerability lets malicious extensions hijack Gemini Live to spy on users and steal sensitive files. Researchers at Palo Alto Networks found a Chrome vulnerability, tracked as CVE ...

Pierluigi Paganini March 03, 2026

APT

Middle east crisis prompts UK NCSC warning on potential Iranian cyber activity

UK’s NCSC warns of potential Iranian cyberattacks as Middle East tensions rise, urging vigilance from exposed organizations. The UK’s National Cyber Security Centre (NCSC) has warned organizat ...

Pierluigi Paganini March 02, 2026

Security

Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch

Russia-linked APT28 reportedly exploited MSHTML zero-day CVE-2026-21513 before Microsoft patched it, a high-severity bypass flaw. Akamai reports that Russia-linked APT28 may have exploited CVE-202 ...

Pierluigi Paganini March 02, 2026

APT

APT37 combines cloud storage and USB implants to infiltrate air-gapped systems

North Korea-linked APT 37 used Zoho WorkDrive and USB malware to breach air-gapped networks in the Ruby Jumper campaign. North Korean group ScarCruft (aka APT37, Reaper, and Group123) deployed ne ...

Pierluigi Paganini March 02, 2026

Cyber Crime

Europol’s Project Compass nets 30 arrests in crackdown on “The Com”

Europol’s Project Compass led to 30 arrests targeting 'The Com' network, identifying 62 victims and protecting four children from harm. A yearlong operation, code-named Project Compass, led by E ...

Pierluigi Paganini March 02, 2026

Hacking

ClawJacked flaw exposed OpenClaw users to data theft

“ClawJacked” flaw let malicious sites hijack OpenClaw AI agents to steal data; patch released in version 2026.2.26. A high-severity vulnerability called ClawJacked in OpenClaw allowed maliciou ...

Pierluigi Paganini March 02, 2026

Cyber Crime

Ukrainian hacker pleads guilty to running OnlyFake AI ID scam site

Ukrainian citizen Yurii Nazarenko admitted running OnlyFake, an AI-driven site that sold over 10,000 fake IDs worldwide. Ukrainian man Yurii Nazarenko pleaded guilty to operating OnlyFake, an AI-p ...

Pierluigi Paganini March 02, 2026

Data Breach

ShinyHunters leaked the full Odido dataset

Cybercrime group ShinyHunters leaked the full Odido dataset, the Netherlands is facing the biggest data leak in its history. Odido is a Dutch telecommunications company and one of the largest mobi ...

Pierluigi Paganini March 01, 2026

Artificial Intelligence

Claude code abused to steal 150GB in cyberattack on Mexican agencies

Hackers abused Claude Code to build exploits and steal 150GB of data in a cyberattack targeting Mexican government systems. Hackers abused Anthropic’s Claude Code AI assistant to develop exploit ...

Pierluigi Paganini March 01, 2026

Malware

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 86

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Technical Deep Dive: The Monero Mining C ...

Pierluigi Paganini March 01, 2026

Uncategorized

CVE-2025-64328 exploitation impacts 900 Sangoma FreePBX instances

About 900 Sangoma FreePBX systems were infected with web shells after attackers exploited a command injection flaw. Hundreds of Sangoma FreePBX instances are still infected with web shells followi ...

Pierluigi Paganini March 01, 2026

Security

Security Affairs newsletter Round 565 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly Security ...

Pierluigi Paganini March 01, 2026

Data Breach

Canadian Tire 2025 data breach impacts 38 million users

A data breach at Canadian Tire exposed personal data from over 38 million accounts, including contact details and encrypted passwords. More than 38 million accounts were affected by an October 202 ...

Pierluigi Paganini February 28, 2026

Malware

Microsoft warns of RAT delivered through trojanized gaming utilities

Attackers spread trojanized gaming tools to deliver a stealthy RAT using PowerShell, LOLBins, and Defender evasion tactics. Threat actors are tricking users into running trojanized gaming utilitie ...

Pierluigi Paganini February 28, 2026

Mobile

Aeternum botnet hides commands in Polygon smart contracts

Aeternum botnet uses Polygon blockchain smart contracts for C&C, making its infrastructure harder to detect and disrupt. Qrator Labs researchers uncovered Aeternum, a botnet that runs its comm ...

Pierluigi Paganini February 27, 2026

Security

iPhone and iPad are the first consumer devices cleared for NATO ‘RESTRICTED’ classification

Apple’s iPhone and iPad are now NATO-approved for classified use, listed in the alliance’s Information Assurance Product Catalogue. Apple announced that its iPhone and iPad have received NATO ...

Pierluigi Paganini February 27, 2026

Security

Juniper issues emergency patch for critical PTX router RCE

Juniper released an emergency patch for Junos OS Evolved to fix CVE-2026-21902, a critical RCE flaw affecting PTX routers. Juniper Networks issued an out-of-band security update for Junos OS Evolv ...

Pierluigi Paganini February 27, 2026

Artificial Intelligence

How AI Aids Incident Response: Why Humans Alone Cannot Do IR Efficiently

AI accelerates incident response by correlating alerts and generating reports in minutes, helping teams scale beyond manual limits. Incident response has always been a race against the clock. It s ...

Pierluigi Paganini February 27, 2026

Hacking

12 Million exposed .env files reveal widespread security failures

Mysterium VPN found 12M IPs exposing .env files, leaking credentials and revealing widespread security misconfigurations worldwide. Configuration mistakes rarely trigger alarms. A forgotten deny r ...

Pierluigi Paganini February 27, 2026