Pierluigi Paganini

3 weeks ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini June 06, 2025 Threat intelligence firm PRODAFT warned that Qilin ransomware (aka Phantom Mantis) group targeted multiple organizations between May and June 2025 by exploiting multiple FortiGate vulnerabilities, including CVE-2024-21762, and CVE-2024-55591. “Phantom Mantis recently launched a coordinated intrusion campaign targeting multiple organizations between May and June 2025.

3 weeks ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini June 06, 2025 Russia-linked threat actor targeted Ukraine’s critical infrastructure with a new wiper named PathWiper. Cisco Talos researchers reported that attackers utilized a legitimate endpoint administration tool, indicating they had access to the administrative console, then used it to deploy the PathWiper wiper.

3 weeks ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini June 06, 2025 The U.S. Department of State offers a reward of up to $10 million for information nation-state actors linked to the RedLine infostealer and its alleged author, Russian national Maxim Alexandrovich Rudometov. US authorities specifically target the used of the infostealer in cyber operations targeting critical infrastructure organizations in the United States.

3 weeks ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini June 06, 2025 A joint advisory from the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) states that Play ransomware has hit approximately 900 organizations over the past three years.

3 weeks ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini June 05, 2025 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Google Chromium V8 Out-of-Bounds Read and Write Vulnerability, tracked as CVE-2025-5419, to its Known Exploited Vulnerabilities (KEV) catalog.