LATEST NEWS

VIEW ALL
What should we expect from next cyber weapon? Hypothesis on Stuxnet 3
Pierluigi Paganini December 23, 2011

This 2011 was the year of the consecration of cyber weapons from a mediatic point of view. Awareness of the threat has been shared by all the major states of the world. This weapons could be been use ...

Russia, cyber repression in the social networks era
Pierluigi Paganini December 22, 2011

Several times in these posts we have discussed of the importance of social media in recent years. Social Media are the valuable carrier to disclose political decisions taken by central governments. Th ...

Malware attacks Georgia Hospital, have we learnt the lesson?
Pierluigi Paganini December 21, 2011

The medical industry is historically one of the sectors that has benefited more than others for the introduction of technology. Devices allow ever more complex operations every day to millions of pati ...

The thin line between monitoring and censorship
Pierluigi Paganini December 20, 2011

During the last year we have seen the consolidation of the tendency to use social media as a major vector for the exchange of information. The imperative is to be social, no matter if you need to shar ...

recent articles

Security
Microsoft Patch Tuesday security updates for July 2025 fixed a zero-day

Microsoft released Patch Tuesday security updates for July 2025, which addressed 130 flaws, including one a Microsoft SQL Server zero-day. Microsoft Patch Tuesday security updates for July 2025 ad ...

Pierluigi Paganini July 08, 2025
Intelligence
Italian police arrested a Chinese national suspected of cyberespionage on a U.S. warrant

Italian police arrested a Chinese national linked to Silk Typhoon APT group at Milan's Malpensa Airport on a U.S. warrant. Italian police arrested a Chinese national, Zewei Xu (33), at Milan's Mal ...

Pierluigi Paganini July 08, 2025
Hacking
U.S. CISA adds MRLG, PHPMailer, Rails Ruby on Rails, and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Multi-Router Looking Glass (MRLG), PHPMailer, Rails Ruby on Rails, and Synacor Zimbra Collaboration Suite (ZCS) flaws to its Known Ex ...

Pierluigi Paganini July 08, 2025
Cyber Crime
IT Worker arrested for selling access in $100M PIX cyber heist

Brazil arrests IT worker João Roque for aiding $100M PIX cyber heist, one of Brazil’s biggest banking system breaches. Brazilian police arrested João Roque (48), an IT employee at C&M, for ...

Pierluigi Paganini July 08, 2025
Malware
New Batavia spyware targets Russian industrial enterprises

Since March 2025, fake contract emails have been spreading Batavia spyware in targeted attacks on Russian organizations. Since March 2025, a targeted phishing campaign against Russian organization ...

Pierluigi Paganini July 07, 2025
Security
Taiwan flags security risks in popular Chinese apps after official probe

Taiwan warns Chinese apps like TikTok and WeChat pose security risks due to excessive data collection and data transfers to China. Taiwan National Security Bureau (NSB) warns that Chinese apps lik ...

Pierluigi Paganini July 07, 2025
Hacking
U.S. CISA adds Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Chromium V8 vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agenc ...

Pierluigi Paganini July 07, 2025
Cyber Crime
Hunters International ransomware gang shuts down and offers free decryption keys to all victims

Hunters International ransomware gang announced its shutdown, citing unspecified "recent developments" and acknowledging its impact. The ransomware group Hunters International announced on its dar ...

Pierluigi Paganini July 06, 2025
Security
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 52

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape 10 Things I Hate About Attribution: RomCom vs. TransferLoader� ...

Pierluigi Paganini July 06, 2025
Breaking News
Security Affairs newsletter Round 531 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly Security ...

Pierluigi Paganini July 06, 2025
Malware
North Korea-linked threat actors spread macOS NimDoor malware via fake Zoom updates

North Korea-linked hackers use fake Zoom updates to spread macOS NimDoor malware, targeting crypto firms with stealthy backdoors. North Korea-linked threat actors are targeting Web3 and crypto fir ...

Pierluigi Paganini July 05, 2025
Security
Critical Sudo bugs expose major Linux distros to local Root exploits

Critical Sudo flaws let local users gain root access on Linux systems, the vulnerabilities affect major Linux distributions. Cybersecurity researchers disclosed two vulnerabilities in the Sudo com ...

Pierluigi Paganini July 04, 2025
Laws and regulations
Google fined $314M for misusing idle Android users' data

Google must pay $314M after a California court ruled it misused idle Android users' data. The case ends a class-action suit filed in August 2019. A San Jose jury ruled that Google misused Android ...

Pierluigi Paganini July 04, 2025
Malware
A flaw in Catwatchful spyware exposed logins of +62,000 users

A flaw in Catwatchful spyware exposed logins of 62,000 users, turning the spy tool into a data leak, security researcher Eric Daigle revealed. A flaw in the Catwatchful Android spyware exposed its ...

Pierluigi Paganini July 04, 2025
APT
China-linked group Houken hit French organizations using zero-days

China-linked group Houken hit French govt, telecom, media, finance and transport sectors using Ivanti CSA zero-days, says France’s ANSSI. France's cyber agency ANSSI revealed that a Chinese hack ...

Pierluigi Paganini July 03, 2025
Data Breach
Cybercriminals Target Brazil: 248,725 Exposed in CIEE One Data Breach

Resecurity found a breach in Brazil’s CIEE One platform, exposing PII and documents, later sold by data broker "888" on the dark web. Resecurity identified a data breach of one of the major plat ...

Pierluigi Paganini July 03, 2025
Cyber Crime
Europol shuts down Archetyp Market, longest-running dark web drug marketplace

Europol shuts down Archetyp Market, longest-running dark web drug site, the police arrested the admin in Spain, top vendors hit in Sweden. An international law enforcement operation led by German ...

Pierluigi Paganini July 03, 2025
Uncategorized
Kelly Benefits data breach has impacted 550,000 people, and the situation continues to worsen as the investigation progresses

A data breach at Kelly Benefits has impacted 550,000 people, with the number of affected individuals growing as the investigation continues. Benefits and payroll solutions firm Kelly Benefits has ...

Pierluigi Paganini July 03, 2025
Security
Cisco removed the backdoor account from its Unified Communications Manager

Digital communications technology giant Cisco addressed a static SSH credentials vulnerability in its Unified Communications Manager (Unified CM). A flaw, tracked as CVE-2025-20309 (CVSS score o ...

Pierluigi Paganini July 02, 2025
Cyber Crime
U.S. Sanctions Russia's Aeza Group for aiding crooks with bulletproof hosting

U.S. Treasury sanctions Russia-based Aeza Group and affiliates for aiding cybercriminals via bulletproof hosting services. The U.S. Treasury’s Office of Foreign Assets Control (OFAC) sanctioned ...

Pierluigi Paganini July 02, 2025