information security news

Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITIONSecurity Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free…

1 month ago
Lazarus APT stole $1.5B from Bybit, it is the largest cryptocurrency heist everLazarus APT stole $1.5B from Bybit, it is the largest cryptocurrency heist ever

Lazarus APT stole $1.5B from Bybit, it is the largest cryptocurrency heist ever

Crypto exchange Bybit was the victim of a sophisticated attack, and threat actors stole $1.5B worth of cryptocurrency from one of…

1 month ago
Apple removes iCloud encryption in UK following backdoor demand<gwmw style="display:none;"></gwmw>Apple removes iCloud encryption in UK following backdoor demand<gwmw style="display:none;"></gwmw>

Apple removes iCloud encryption in UK following backdoor demand<gwmw style="display:none;"></gwmw>

Apple removed iCloud’s Advanced Data Protection in the UK after the government requested encryption backdoor access. Apple ends iCloud end-to-end…

1 month ago
B1ack’s Stash released 1 Million credit cardsB1ack’s Stash released 1 Million credit cards

B1ack’s Stash released 1 Million credit cards

Experts warn that the carding website B1ack’s Stash released a collection of over 1 million unique credit and debit cards. D3 Lab researchers…

1 month ago
U.S. CISA adds Craft CMS and Palo Alto Networks PAN-OS flaws to its Known Exploited Vulnerabilities catalogU.S. CISA adds Craft CMS and Palo Alto Networks PAN-OS flaws to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Craft CMS and Palo Alto Networks PAN-OS flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Craft CMS and Palo Alto Networks PAN-OS vulnerabilities to its Known Exploited…

1 month ago
Atlassian fixed critical flaws in Confluence and CrowdAtlassian fixed critical flaws in Confluence and Crowd

Atlassian fixed critical flaws in Confluence and Crowd

Australian software firm Atlassian patched 12 critical and high-severity flaws in Bamboo, Bitbucket, Confluence, Crowd, and Jira. Software firm Atlassian…

1 month ago
Salt Typhoon used custom malware JumbledPath to spy U.S. telecom providersSalt Typhoon used custom malware JumbledPath to spy U.S. telecom providers

Salt Typhoon used custom malware JumbledPath to spy U.S. telecom providers

China-linked cyber espionage group Salt Typhoon uses custom malware JumbledPath to on spy U.S. telecom providers. Cisco Talos researchers reported…

1 month ago
NailaoLocker ransomware targets EU healthcare-related entitiesNailaoLocker ransomware targets EU healthcare-related entities

NailaoLocker ransomware targets EU healthcare-related entities

NailaoLocker ransomware is a new threat that targeted European healthcare organizations from June to October 2024. Orange Cyberdefense CERT uncovered…

1 month ago
Microsoft fixed actively exploited flaw in Power PagesMicrosoft fixed actively exploited flaw in Power Pages

Microsoft fixed actively exploited flaw in Power Pages

Microsoft addressed a privilege escalation vulnerability in Power Pages, the flaw is actively exploited in attacks. Microsoft has addressed two…

1 month ago
Citrix addressed NetScaler console privilege escalation flawCitrix addressed NetScaler console privilege escalation flaw

Citrix addressed NetScaler console privilege escalation flaw

Citrix addressed a high-severity privilege escalation vulnerability impacting NetScaler Console and NetScaler Agent under certain conditions. Citrix released security updates…

1 month ago