Poland’s authorities investigate a hacking attack on local railways
Poland’s authorities investigate a hacking attack on country’s railways Pierluigi Paganini August 27, 2023 The Polish domestic security agency is investigating a hacking attack on…
Category: Securityaffairs
Leaked LockBit 3.0 ransomware builder used by multiple actors
Leaked LockBit 3.0 ransomware builder used by multiple threat actors Pierluigi Paganini August 27, 2023 The leak of the source code of the LockBit 3.0 ransomware builder…
Security Affairs newsletter Round 434 by Pierluigi Paganini – International edition
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email…
Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS softwareSecurity Affairs
Cisco addressed three high-severity flaws in NX-OS and FXOS software that could cause denial-of-service (DoS) conditions. Cisco this week addressed multiple flaws in its products,…
Cloud and hosting provider Leaseweb took down critical systems after a cyber attackSecurity Affairs
The cloud and hosting provider Leaseweb suffered a security breach that impacted some “critical” systems of the company. Global hosting and cloud services provider Leaseweb…
French employment agency Pôle emploi data breach impacted 10M peopleSecurity Affairs
Pôle emploi, the French government employment agency suffered a data breach that impacted 10 million individuals. The French government employment agency Pôle emploi suffered a data…
Crypto investor data exposed by a SIM swapping attack against a Kroll employeeSecurity Affairs
Security consulting giant Kroll disclosed a data breach resulting from a SIM-swapping attack against one of its employees. Security consulting firm Kroll revealed that a SIM-swapping attack against…
China-linked Flax Typhoon APT targets TaiwanSecurity Affairs
China-linked APT group Flax Typhoon targeted dozens of organizations in Taiwan as part of a suspected espionage campaign. Microsoft linked the Chinese APT Flax Typhoon…
Whiffy Recon malware triangulates the position of infected systems via Wi-FiSecurity Affairs
Experts observed the SmokeLoader malware delivering a new Wi-Fi scanning malware strain dubbed Whiffy Recon. Secureworks Counter Threat Unit (CTU) researchers observed the Smoke Loader botnet…
Patches for Barracuda ESG CVE-2023-2868 are ineffectiveSecurity Affairs
The FBI warned that patches for a critical Barracuda ESG flaw CVE-2023-2868 are “ineffective” and patched appliances are still being hacked. The Federal Bureau of…
Experts released PoC exploit for Ivanti Sentry CVE-2023-38035Security Affairs
Proof-of-concept exploit code for critical Ivanti Sentry authentication bypass flaw CVE-2023-38035 has been released. Researchers released a proof-of-concept (PoC) exploit code for critical Ivanti Sentry…
Lazarus APT exploits Zoho ManageEngine flaw to target an Internet backbone infrastructure providerSecurity Affairs
The North Korea-linked Lazarus group exploits a critical flaw in Zoho ManageEngine ServiceDesk Plus to deliver the QuiteRAT malware. The North Korea-linked APT group Lazarus…