Category: Securityaffairs

Bangladesh government website leaked data of millions of citizensSecurity Affairs
21
Jul
2023

shame dealer left your data up for grabsSecurity Affairs

Cybernews research team discovered that two Suzuki-authorized dealer websites were leaking customers’ sensitive information. Suzuki or otherwise, buying a new…

Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 groupSecurity Affairs
20
Jul
2023

Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 groupSecurity Affairs

China-linked group APT41 was spotted using two previously undocumented Android spyware called WyrmSpy and DragonEgg China-linked APT group APT41 has…

ALPHV/BlackCat and Clop gangs claim to have hacked cosmetics giant Estée LauderSecurity Affairs
20
Jul
2023

ALPHV/BlackCat and Clop gangs claim to have hacked cosmetics giant Estée LauderSecurity Affairs

The American cosmetics giant company Estée Lauder was hacked by two distinct ransomware groups, the ALPHV/BlackCat and Clop gangs. Yesterday…

P2PInfect, a Rusty P2P worm targets Redis Servers on Linux and Windows systems
20
Jul
2023

P2PInfect, a Rusty P2P worm targets Redis Servers on Linux and Windows systems

Cybersecurity researchers discovered a new peer-to-peer (P2P) worm called P2PInfect that targets Redis servers. Palo Alto Networks Unit 42 researchers have discovered…

Adobe warns customers of critical ColdFusion RCE exploited in attacksSecurity Affairs
20
Jul
2023

Adobe out-of-band update addresses an actively exploited ColdFusion zero-daySecurity Affairs

Adobe released an emergency update to address critical vulnerabilities in ColdFusion, including an actively exploited zero-day. Adobe released an out-of-band…

Ukraine's cyber police dismantled a massive bot farmSecurity Affairs
19
Jul
2023

Ukraine’s cyber police dismantled a massive bot farmSecurity Affairs

The Cyber ​​Police Department of the National Police of Ukraine dismantled a massive bot farm and seized 150,000 SIM cards….

US Gov adds surveillance firms Cytrox and Intellexa to Entity List for trafficking in cyber exploitsSecurity Affairs
19
Jul
2023

US Gov adds surveillance firms Cytrox and Intellexa to Entity List for trafficking in cyber exploitsSecurity Affairs

The U.S. government added surveillance technology vendors Cytrox and Intellexa to an economic blocklist for trafficking in cyber exploits. The…

Citrix warns of actively exploited zero-day in ADC and GatewaySecurity Affairs
19
Jul
2023

Citrix warns of actively exploited zero-day in ADC and GatewaySecurity Affairs

Citrix is warning customers of an actively exploited critical vulnerability in NetScaler Application Delivery Controller (ADC) and Gateway. Citrix is…

FIA World Endurance Championship driver passports leakedSecurity Affairs
19
Jul
2023

FIA World Endurance Championship driver passports leakedSecurity Affairs

Le Mans Endurance Management, operating the FIA World Endurance Championship’s website, exposed the data of hundreds of drivers by leaking…

Virustotal data leak exposed data of some registered customersSecurity Affairs
18
Jul
2023

Virustotal data leak exposed data of some registered customersSecurity Affairs

The online malware scanning service VirusTotal leaked data associated with some registered customers, German newspapers reported. German newspapers Der Spiegel and Der…

FIN8 Group spotted delivering the BlackCat RansomwareSecurity Affairs
18
Jul
2023

FIN8 Group spotted delivering the BlackCat RansomwareSecurity Affairs

The cybercrime group FIN8 is using a revamped version of the Sardonic backdoor to deliver the BlackCat ransomware. The financially motivated group…

Hacking campaign targets sites using WordPress WooCommerce Payments PluginSecurity Affairs
18
Jul
2023

Hacking campaign targets sites using WordPress WooCommerce Payments PluginSecurity Affairs

Threat actors are actively exploiting a critical flaw, tracked as CVE-2023-28121, in the WooCommerce Payments WordPress plugin. Threat actors are actively…