Category: Securityaffairs

Poland's authorities investigate a hacking attack on local railways
27
Aug
2023

Poland’s authorities investigate a hacking attack on local railways

Poland’s authorities investigate a hacking attack on country’s railways Pierluigi Paganini August 27, 2023 The Polish domestic security agency is…

Leaked LockBit 3.0 ransomware builder used by multiple actors
27
Aug
2023

Leaked LockBit 3.0 ransomware builder used by multiple actors

Leaked LockBit 3.0 ransomware builder used by multiple threat actors Pierluigi Paganini August 27, 2023 The leak of the source…

Security Affairs newsletter Round 434 by Pierluigi Paganini – International edition
27
Aug
2023

Security Affairs newsletter Round 434 by Pierluigi Paganini – International edition

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free…

Researchers released a PoC exploit for CVE-2023-20178 flaw in Cisco AnyConnect SecureSecurity Affairs
27
Aug
2023

Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS softwareSecurity Affairs

Cisco addressed three high-severity flaws in NX-OS and FXOS software that could cause denial-of-service (DoS) conditions. Cisco this week addressed…

Cloud and hosting provider Leaseweb took down critical systems after a cyber attackSecurity Affairs
26
Aug
2023

Cloud and hosting provider Leaseweb took down critical systems after a cyber attackSecurity Affairs

The cloud and hosting provider Leaseweb suffered a security breach that impacted some “critical” systems of the company. Global hosting…

French employment agency Pôle emploi data breach impacted 10M peopleSecurity Affairs
26
Aug
2023

French employment agency Pôle emploi data breach impacted 10M peopleSecurity Affairs

Pôle emploi, the French government employment agency suffered a data breach that impacted 10 million individuals. The French government employment agency…

Crypto investor data exposed by a SIM swapping attack against a Kroll employeeSecurity Affairs
26
Aug
2023

Crypto investor data exposed by a SIM swapping attack against a Kroll employeeSecurity Affairs

Security consulting giant Kroll disclosed a data breach resulting from a SIM-swapping attack against one of its employees. Security consulting firm Kroll revealed…

China-linked Flax Typhoon APT targets TaiwanSecurity Affairs
25
Aug
2023

China-linked Flax Typhoon APT targets TaiwanSecurity Affairs

China-linked APT group Flax Typhoon targeted dozens of organizations in Taiwan as part of a suspected espionage campaign. Microsoft linked…

Whiffy Recon malware triangulates the position of infected systems via Wi-FiSecurity Affairs
25
Aug
2023

Whiffy Recon malware triangulates the position of infected systems via Wi-FiSecurity Affairs

Experts observed the SmokeLoader malware delivering a new Wi-Fi scanning malware strain dubbed Whiffy Recon. Secureworks Counter Threat Unit (CTU) researchers…

CISA warns about SUBMARINE Backdoor employed in Barracuda ESG attacksSecurity Affairs
25
Aug
2023

Patches for Barracuda ESG CVE-2023-2868 are ineffectiveSecurity Affairs

The FBI warned that patches for a critical Barracuda ESG flaw CVE-2023-2868 are “ineffective” and patched appliances are still being…

Experts released PoC exploit for Ivanti Sentry CVE-2023-38035Security Affairs
24
Aug
2023

Experts released PoC exploit for Ivanti Sentry CVE-2023-38035Security Affairs

Proof-of-concept exploit code for critical Ivanti Sentry authentication bypass flaw CVE-2023-38035 has been released. Researchers released a proof-of-concept (PoC) exploit…

Lazarus APT exploits Zoho ManageEngine flaw to target an Internet backbone infrastructure providerSecurity Affairs
24
Aug
2023

Lazarus APT exploits Zoho ManageEngine flaw to target an Internet backbone infrastructure providerSecurity Affairs

The North Korea-linked Lazarus group exploits a critical flaw in Zoho ManageEngine ServiceDesk Plus to deliver the QuiteRAT malware. The…