Post

Security Affairs Newsletter Round 523: International Edition by Pierluigi Paganini

Security Affairs Newsletter Round 523: International Edition by Pierluigi Paganini

TL;DR

The Security Affairs newsletter Round 523, curated by Pierluigi Paganini, covers crucial cybersecurity developments, including data breaches, malware incidents, and international cybercrime news. Key highlights include a cyberattack on South African Airways, vulnerabilities in routers, and updates on major ransomware activities.

Main Content

Weekly SecurityAffairs Newsletter

Enjoy the latest round of the weekly SecurityAffairs newsletter, featuring top security articles and international press coverage.

Ascension reveals personal data of 437,329 patients exposed in cyberattack
Operation Moonlander dismantled the botnet behind Anyproxy and 5socks cybercriminals services
A cyber attack briefly disrupted South African Airways operations
Cybercriminal services target end-of-life routers, FBI warns
Russia-linked ColdRiver used LostKeys malware in recent attacks
SonicWall fixed SMA 100 flaws that could be chained to execute arbitrary code
The LockBit ransomware site was breached, database dump was leaked online
Cisco fixed a critical flaw in its IOS XE Wireless Controller
U.S. CISA adds GoVision device flaws to its Known Exploited Vulnerabilities catalog
Polish authorities arrested 4 people behind DDoS-for-hire platforms
Play ransomware affiliate leveraged zero-day to deploy malware
Canary Exploit tool allows to find servers affected by Apache Parquet flaw
Unsophisticated cyber actors are targeting the U.S. Energy sector
NSO Group must pay WhatsApp over $167M in damages for attacks on its users
U.S. CISA adds FreeType flaw to its Known Exploited Vulnerabilities catalog
Samsung MagicINFO flaw exploited days after PoC exploit publication
Experts warn of a second wave of attacks targeting SAP NetWeaver bug CVE-2025-31324
U.S. CISA adds Langflow flaw to its Known Exploited Vulnerabilities catalog
Google fixed actively exploited Android flaw CVE-2025-27363
New ‘Bring Your Own Installer (BYOI)’ technique allows to bypass EDR
Smishing on a Massive Scale: ‘Panda Shop’ Chinese Carding Syndicate
Kelly Benefits December data breach impacted over 400,000 individuals
A hacker stole data from TeleMessage, the firm that sells modified versions of Signal to the U.S. gov
Experts shared up-to-date C2 domains and other artifacts related to recent MintsLoader attacks
Sansec uncovered a supply chain attack via 21 backdoored Magento extensions
US authorities have indicted Black Kingdom ransomware admin
Malicious Go Modules designed to wipe Linux systems

International Press – Newsletter

Cybercrime

Malware

Hacking

Intelligence and Information Warfare

Cybersecurity

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, newsletter)

Conclusion

The Security Affairs newsletter Round 523 provides a comprehensive overview of the latest cybersecurity threats and developments. Staying informed about these issues is crucial for individuals and organizations to protect themselves against emerging cyber threats. For more details, visit the full article: source

Additional Resources

For further insights, check:

References

This post is licensed under CC BY 4.0 by the author.