LATEST NEWS

VIEW ALL
Macros based malware on the rise (Once Again)
Pierluigi Paganini April 30, 2015

Microsoft is observing a major spike in the volume of malware using macros since the beginning of the year. The infection method was very common in the past I remember when I was starting my career, ...

Canadian Woman arrested for Spying through webcams
Pierluigi Paganini April 30, 2015

The Royal Canadian Mounted Police has arrested a Canadian woman accused of remotely taking over victims' PCs and spying on them using webcams. Canadian Federal police has arrested a woman last week t ...

A flaw in Realtek SDK exposes SOHO routers to the attack
Pierluigi Paganini April 30, 2015

A flaw affecting Realtek SDK exposes SOHO routers to remote code execution attacks. List of vulnerable devices include D-Link and TRENDnet products. The security expert from DVLabs security researche ...

Hacker Implants NFC Chip to Bypass Military Security Scans
Pierluigi Paganini April 29, 2015

A security researcher implanted an NFC Chip in his Hand to bypass security scanners in high-security environment and exploit Android mobile devices. I confess that I'm curious about some news, bu ...

recent articles

Security
Apple released security updates to fix multiple flaws in iOS and macOS

Apple released security updates to address easily exploitable vulnerabilities impacting iOS and macOS devices. Apple released urgent iOS and macOS security updates to patch critical flaws that co ...

Pierluigi Paganini May 13, 2025
Hacking
U.S. CISA adds TeleMessage TM SGNL to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds TeleMessage TM SGNL flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency ...

Pierluigi Paganini May 12, 2025
Hacking
Researchers found one-click RCE in ASUS’s pre-installed software DriverHub

Expert found two flaws in DriverHub, pre-installed on Asus motherboards, which allow remote code execution via crafted HTTP requests. Security researcher ‘MrBruh’ discovered two vulnerabilitie ...

Pierluigi Paganini May 12, 2025
Security
Threat actors use fake AI tools to deliver the information stealer Noodlophile

Threat actors use fake AI tools to trick users into installing the information stealer Noodlophile, Morphisec researchers warn. Morphisec researchers observed attackers exploiting AI hype to sprea ...

Pierluigi Paganini May 12, 2025
Cyber Crime
German police seized eXch crypto exchange

Germany's BKA shut down eXch crypto exchange, seizing its infrastructure over money laundering and illegal trading platform charges. On April 30, 2025, Germany’s Federal Criminal Police (BKA) sh ...

Pierluigi Paganini May 12, 2025
Breaking News
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 45

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape iClicker site hack targeted students with malware via fake CAP ...

Pierluigi Paganini May 11, 2025
Breaking News
Security Affairs newsletter Round 523 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffair ...

Pierluigi Paganini May 11, 2025
Data Breach
Ascension reveals personal data of 437,329 patients exposed in cyberattack

A data breach at Ascension, caused by a former partner's compromise, exposed the health information of over 430,000 patients. Ascension is one of the largest private healthcare systems in the  ...

Pierluigi Paganini May 10, 2025
Malware
Operation Moonlander dismantled the botnet behind Anyproxy and 5socks cybercriminals services

Law enforcement dismantled a 20-year botnet behind Anyproxy and 5socks cybercriminals services and arrested four suspects. Authorities dismantled a 20-year-old botnet tied to Anyproxy and 5socks ...

Pierluigi Paganini May 10, 2025
Hacking
A cyber attack briefly disrupted South African Airways operations

A cyberattack briefly disrupted South African Airways' website, app, and systems, but core flight operations remained unaffected. South African Airways (SAA) is the national flag carrier of South ...

Pierluigi Paganini May 09, 2025
Cyber Crime
Cybercriminal services target end-of-life routers, FBI warns

The FBI warns that attackers are using end-of-life routers to deploy malware and turn them into proxies sold on 5Socks and Anyproxy networks. The FBI released a FLASH alert warning about 5Socks an ...

Pierluigi Paganini May 09, 2025
APT
Russia-linked ColdRiver used LostKeys malware in recent attacks

Since early 2025, Russia-linked ColdRiver has used LostKeys malware to steal files in espionage attacks on Western governments and organizations. Google's Threat Intelligence Group discovered LOST ...

Pierluigi Paganini May 09, 2025
Hacking
SonicWall fixed SMA 100 flaws that could be chained to execute arbitrary code

SonicWall addressed three SMA 100 flaws, including a potential zero-day, that could allow remote code execution if chained. SonicWall patches three SMA 100 vulnerabilities (CVE-2025-32819, CVE-202 ...

Pierluigi Paganini May 09, 2025
Cyber Crime
The LockBit ransomware site was breached, database dump was leaked online

Lockbit ransomware group has been compromised, attackers stole and leaked data contained in the backend infrastructure of their dark web site. Hackers compromised the dark web leak site of the Loc ...

Pierluigi Paganini May 08, 2025
Security
Cisco fixed a critical flaw in its IOS XE Wireless Controller

Cisco addressed a flaw in its IOS XE Wireless Controller that could enable an unauthenticated, remote attacker to upload arbitrary files. Cisco released software updates to address a vulnerability ...

Pierluigi Paganini May 08, 2025
Security
U.S. CISA adds GoVision device flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds GoVision device flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (C ...

Pierluigi Paganini May 08, 2025
Cyber Crime
Polish authorities arrested 4 people behind DDoS-for-hire platforms

Polish police arrested 4 people behind DDoS-for-hire platforms used in global attacks, offering takedowns for as little as €10 via six stresser services. Polish authorities arrested 4 people lin ...

Pierluigi Paganini May 08, 2025
Cyber Crime
Play ransomware affiliate leveraged zero-day to deploy malware

The Play ransomware gang exploited a high-severity Windows Common Log File System flaw in zero-day attacks to deploy malware. The Play ransomware gang has exploited a Windows Common Log File Sys ...

Pierluigi Paganini May 07, 2025
Security
Canary Exploit tool allows to find servers affected by Apache Parquet flaw

F5 Labs researchers released a PoC tool to find servers vulnerable to the Apache Parquet vulnerability CVE-2025-30065. A working proof-of-concept exploit for the critical Apache Parquet vulnerabil ...

Pierluigi Paganini May 07, 2025
Security
Unsophisticated cyber actors are targeting the U.S. Energy sector

CISA, FBI, EPA, and DoE warn of cyberattacks on the U.S. Energy sector carried out by unsophisticated cyber actors targeting ICS/SCADA systems. The US cybersecurity agency CISA, the FBI, EPA, and ...

Pierluigi Paganini May 07, 2025