Multiple Git flaws led to credentials compromise
Multiple Git flaws led to credentials compromise Pierluigi Paganini January 27, 2025 Vulnerabilities in the Git credential retrieval protocol could have allowed threat actors to…
Category: Securityaffairs
GamaCopy targets Russia mimicking Russia-linked Gamaredon APT
GamaCopy targets Russia mimicking Russia-linked Gamaredon APT Pierluigi Paganini January 27, 2025 New threat actor GamaCopy mimics Russia-linked Gamaredon APT in attacks on Russian-speaking targets.…
ESXi ransomware attacks use SSH tunnels to avoid detection
ESXi ransomware attacks use SSH tunnels to avoid detection Pierluigi Paganini January 27, 2025 Threat actors behind ESXi ransomware attacks target virtualized environments using SSH…
Hackers allegedly stole $69M from cryptocurrency platform Phemex
Attackers allegedly stole $69 million from cryptocurrency platform Phemex Pierluigi Paganini January 27, 2025 Crooks stole at least $69 million from Singapore-based cryptocurrency platform Phemex…
Change Healthcare data breach exposed the private data of over half the U.S.
Change Healthcare data breach exposed the private data of over half the U.S. Pierluigi Paganini January 26, 2025 The Change Healthcare data breach is worse…
Cisco warns of a ClamAV bug with PoC exploit
Cisco warns of a ClamAV bug with PoC exploit Pierluigi Paganini January 26, 2025 Cisco addressed a ClamAV denial-of-service (DoS) vulnerability, and experts warn of…
Subaru Starlink flaw allowed experts to remotely hack cars
Subaru Starlink flaw allowed experts to remotely hack cars Pierluigi Paganini January 25, 2025 Subaru Starlink flaw exposed vehicles and customer accounts in the US,…
Participants in the Pwn2Own Automotive 2025 earned $886,250
Participants in the Pwn2Own Automotive 2025 earned $886,250 Pierluigi Paganini January 25, 2025 The Pwn2Own Automotive 2025 hacking contest has ended, and participants earned $886,250…
U.S. CISA adds JQuery flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds JQuery flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 23, 2025 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds JQuery…
U.S. CISA adds SonicWall SMA1000 flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds SonicWall SMA1000 flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 24, 2025 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds…
J-magic malware campaign targets Juniper routers
J-magic malware campaign targets Juniper routers Pierluigi Paganini January 24, 2025 Threat actors are targeting Juniper routers with a custom backdoor in a campaign called…
SonicWall warns of a critical CVE-2025-23006 zero-day likely exploited in the wild
SonicWall warns of a critical CVE-2025-23006 zero-day likely exploited in the wild Pierluigi Paganini January 24, 2025 SonicWall warns customers of a critical zero-day vulnerability…