Security Affairs - Page 97 of 1779 - Read, think, share … Security is everyone's responsibility

LATEST NEWS

VIEW ALL

Emergency. Hundreds of compromised WordPress sites serve TeslaCrypt ransomware

Pierluigi Paganini February 05, 2016

Operators running websites based on the WordPress must be aware of a spike in the number of compromised platforms used to deliver the TeslaCrypt ransomware. Administrators running websites based on t ...

Australian NSW Government Department of Resources and Energy under attack. Is it Chinese cyber espionage?

Pierluigi Paganini February 05, 2016

According to the NSW Government Department of Resources and Energy Chinese hackers have launched a malware-based attack on its network in December. The Australian NSW Government Department of Resourc ...

Someone has pwned the Dridex botnet serving the Avira Antivirus

Pierluigi Paganini February 05, 2016

Unknowns have pwned the Dridex botnet and are using it to spread a legitimate copy of the Avira Antivirus software instead the malicious payload. This story is very intriguing, someone has hacked a p ...

Do you have a Netgear ProSAFE NMS300? Here you are the exploit to hack it

Pierluigi Paganini February 05, 2016

A security researcher has released the exploit code for two serious vulnerabilities in the Netgear ProSAFE NMS300 network management system. Do you have a Netgear ProSAFE NMS300 Management System? � ...

1
2
3625
3626
3627
3628
3629
4445
4446
4447

most popular

VIEW ALL

Agentic AI in Cybersecurity: Beyond Triage to Strategic Threat Hunting

November 10, 2025

Nine NuGet packages disrupt DBs and industrial systems with time-delayed payloads

November 10, 2025

QNAP fixed multiple zero-days in its software demonstrated at Pwn2Own 2025

November 10, 2025

AI chat privacy at risk: Microsoft details Whisper Leak side-channel attack

November 09, 2025

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 70

November 09, 2025

recent articles

Uncategorized

Agentic AI in Cybersecurity: Beyond Triage to Strategic Threat Hunting

With a 4M cybersecurity worker shortage, agentic AI helps SOCs move beyond triage, enabling proactive security once thought impossible. With a deficit of 4 million cybersecurity workers worldwide, ...

Pierluigi Paganini November 10, 2025

Malware

Nine NuGet packages disrupt DBs and industrial systems with time-delayed payloads

Nine NuGet packages by “shanhai666” can deploy delayed payloads to disrupt databases and industrial systems. Socket's Threat Research Team discovered nine malicious NuGet packages, published b ...

Pierluigi Paganini November 10, 2025

Hacking

QNAP fixed multiple zero-days in its software demonstrated at Pwn2Own 2025

QNAP patched seven zero-days used at Pwn2Own 2025 affecting QTS, QuTS hero, Hyper Data Protector, Malware Remover, and HBS 3. Taiwanese vendor QNAP patched seven zero-day vulnerabilities exploited ...

Pierluigi Paganini November 10, 2025

Hacking

AI chat privacy at risk: Microsoft details Whisper Leak side-channel attack

Microsoft uncovered Whisper Leak, a side-channel attack that lets network snoopers infer AI chat topics despite encryption, risking user privacy. Microsoft revealed a new side-channel attack calle ...

Pierluigi Paganini November 09, 2025

Malware

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 70

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter SesameOp: Novel backdoor uses OpenAI Ass ...

Pierluigi Paganini November 09, 2025

Breaking News

Security Affairs newsletter Round 549 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly Security ...

Pierluigi Paganini November 09, 2025

APT

China-linked hackers target U.S. non-profit in long-term espionage campaign

A China-linked group targeted a U.S. non-profit to gain long-term access, part of wider attacks on U.S. entities tied to policy matters. China-linked hackers breached a U.S. policy-focused nonprof ...

Pierluigi Paganini November 08, 2025

Security

A new Italian citizen was targeted with Paragon’s Graphite spyware. We have a serious problem

An Italian political adviser was targeted with Paragon’s Graphite spyware, becoming the fifth Italian in the ongoing government surveillance activity. Italian political adviser Francesco Nicodem ...

Pierluigi Paganini November 08, 2025

Security

LANDFALL spyware exploited Samsung zero-day CVE-2025-21042 in Middle East attacks

A now-patched Samsung Galaxy flaw, tracked as CVE-2025-21042, was exploited as a zero-day to deploy LANDFALL spyware in targeted attacks in Middle East. Samsung patched a flaw exploited as a zero- ...

Pierluigi Paganini November 07, 2025

Security

Cisco fixes critical UCCX flaw allowing Root command execution

Cisco patched a critical flaw in its Unified Contact Center Express (UCCX) software that allowed attackers to execute commands with root privileges. Cisco released security updates to address a cr ...

Pierluigi Paganini November 07, 2025

Security

Cisco became aware of a new attack variant against Secure Firewall ASA and FTD devices

Cisco warns of a new attack variant exploiting CVE-2025-20333 and CVE-2025-20362 in Secure Firewall ASA and FTD devices. Cisco warned of a new attack variant targeting vulnerable Secure Firewall A ...

Pierluigi Paganini November 06, 2025

Malware

Google sounds alarm on self-modifying AI malware

Google warns malware now uses AI to mutate, adapt, and collect data during execution, boosting evasion and persistence. Google’s Threat Intelligence Group (GTIG) warn of a new generation of malw ...

Pierluigi Paganini November 06, 2025

Hacking

Alleged Russia-linked Curly COMrades exploit Windows Hyper-V to evade EDRs

Curly COMrades threat actors exploit Windows Hyper-V to hide Linux VMs, evade EDR tools, and deploy custom malware undetected. Bitdefender researchers, aided by Georgia’s CERT, uncovered that Cu ...

Pierluigi Paganini November 06, 2025

Security

SonicWall blames state-sponsored hackers for September security breach

Cybersecurity firm SonicWall attributed the September security breach exposing firewall configuration files to state-sponsored hackers. In September, SonicWall urged customers to reset credentials ...

Pierluigi Paganini November 05, 2025

Laws and regulations

U.S. sanctioned North Korea bankers for laundering funds linked to cyberattacks and peapons program

U.S. sanctions North Korea bankers and firms accused of laundering cybercrime funds used to finance the country’s nuclear weapons program. The U.S. Government has imposed sanctions on several No ...

Pierluigi Paganini November 05, 2025

Cyber Crime

Former cybersecurity employees attempted to extort five U.S. companies in 2023 using BlackCat ransomware attacks

U.S. prosecutors charged three Florida men for using BlackCat ransomware to hack and extort five U.S. companies in 2023. U.S. prosecutors charged Ryan Clifford Goldberg, Kevin Tyler Martin, and an ...

Pierluigi Paganini November 05, 2025

Security

U.S. CISA adds Gladinet CentreStack, and CWP Control Web Panel flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Gladinet CentreStack, and CWP Control Web Panel flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and I ...

Pierluigi Paganini November 05, 2025

Cyber Crime

Nine arrested in €600M crypto laundering bust across Europe

A coordinated Eurojust-led operation led to nine arrests in Cyprus, Spain, and Germany for laundering €600M in crypto fraud. Authorities in France, Belgium, and Cyprus arrested nine people in a ...

Pierluigi Paganini November 05, 2025

Security

Google fixed a critical remote code execution in Android

Google’s November 2025 Android update fixes two flaws in the System component, including a critical remote code execution issue. Google’s November 2025 Android security updates addressed two v ...

Pierluigi Paganini November 04, 2025

Malware

SesameOp: New backdoor exploits OpenAI API for covert C2

Microsoft found a new backdoor, SesameOp, using the OpenAI Assistants API for stealthy command-and-control in hacked systems. Microsoft uncovered a new backdoor, named SesameOp, that abuses the Op ...

Pierluigi Paganini November 04, 2025