Category: Securityaffairs

WormGPT, a generative AI tool to launch sophisticated BEC attacksSecurity Affairs
16
Jul
2023

WormGPT, a generative AI tool to launch sophisticated BEC attacksSecurity Affairs

The WormGPT case: How Generative artificial intelligence (AI) can improve the capabilities of cybercriminals and allows them to launch sophisticated…

Security Affairs newsletter Round 424 by Pierluigi Paganini – International edition
15
Jul
2023

Security Affairs newsletter Round 428 by Pierluigi Paganini – International edition

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free…

Russia-linked APT Gamaredon starts stealing data from victims between 30 and 50 minutes after the initial compromiseSecurity Affairs
15
Jul
2023

Russia-linked APT Gamaredon starts stealing data from victims between 30 and 50 minutes after the initial compromiseSecurity Affairs

Ukraine’s Computer Emergency Response Team (CERT-UA) states that Russia-linked APT Gamaredon starts stealing data 30 minutes after the initial compromise….

Source code of the BlackLotus UEFI Bootkit was leaked on GitHubSecurity Affairs
14
Jul
2023

Source code of the BlackLotus UEFI Bootkit was leaked on GitHubSecurity Affairs

The source code for the BlackLotus UEFI bootkit has been published on GitHub and experts warn of the risks of…

CISA adds recently disclosed Apple flaws to its Known Exploited Vulnerabilities catalogSecurity Affairs
14
Jul
2023

US CISA warns of Rockwell Automation ControlLogix flawsSecurity Affairs

The U.S. CISA warns of two flaws impacting Rockwell Automation ControlLogix that can lead to remote code execution and DoS…

Indexing Over 15 Million WordPress Websites with PWNPressSecurity Affairs
14
Jul
2023

Indexing Over 15 Million WordPress Websites with PWNPressSecurity Affairs

Sicuranex’s PWNPress platforms indexed over 15 million WordPress websites, it collects data related to vulnerabilities and misconfigurations Leveraging the extensive…

New AVrecon botnet remained under the radar for 2 years while targeting SOHO RoutersSecurity Affairs
14
Jul
2023

New AVrecon botnet remained under the radar for 2 years while targeting SOHO RoutersSecurity Affairs

A new malware dubbed AVrecon targets small office/home office (SOHO) routers, it infected over 70,000 devices from 20 countries. Lumen…

Apple fixed actively exploited zero-day flaws in iOS,macOS,& SafariSecurity Affairs
13
Jul
2023

Apple re-released Rapid Security Response to fix recently disclosed zero-daySecurity Affairs

Apple re-released its Rapid Security Response updates for iOS and macOS after fixing browsing issues on certain websites caused by…

Zimbra urges customers to manually fix actively exploited zero-daySecurity Affairs
13
Jul
2023

Zimbra urges customers to manually fix actively exploited zero-daySecurity Affairs

Zimbra has released updates to address a zero-day vulnerability actively exploited in attacks aimed at Zimbra Collaboration Suite (ZCS) email…

APT VANGUARD PANDA uses a new tradecraft in recent attacksSecurity Affairs
13
Jul
2023

Chinese hackers compromised emails of US Government agenciesSecurity Affairs

Chinese hackers have compromised the emails of an unnamed US Federal Civilian Executive Branch (FCEB) agency. In Mid-June a malicious…

SonicWall urges orgs to fix critical flaws in GMS/Analytics productsSecurity Affairs
13
Jul
2023

SonicWall urges orgs to fix critical flaws in GMS/Analytics productsSecurity Affairs

SonicWall fixed multiple critical vulnerabilities impacting its GMS firewall management and Analytics management and reporting engine. SonicWall addressed multiple critical…

Citrix fixed a critical flaw in Secure Access Client for UbuntuSecurity Affairs
12
Jul
2023

Citrix fixed a critical flaw in Secure Access Client for UbuntuSecurity Affairs

Citrix fixed a critical flaw affecting the Secure Access client for Ubuntu that could be exploited to achieve remote code…