LATEST NEWS

VIEW ALL
ISP can't be forced to filter transmissions inherent in copyright-infringing content
Pierluigi Paganini November 25, 2011

In recent months it has had discussions about the possibility of blocking sites that somehow support the distribution of pirated software. How to identify these sites? How to find and block communicat ...

Water utilities hacked ... another SCADA system attack
Pierluigi Paganini November 24, 2011

The SCADA systems at the Water utilities in Illinois were hacked by a malicious attacker. “the SCADA system was powered on and off, burning out a water pump.” This is what the hacker has pos ...

Cyber Threats, high social impact but ... which is the level of awareness?
Pierluigi Paganini November 23, 2011

Last week I had the opportunity to discuss with my father of adverse economic situation and in particular of the Italian public spending. I have introduced some reference to the arms and in particular ...

Massive DNS poisoning: What happened to brazilian ISPs?
Pierluigi Paganini November 22, 2011

What is purpose for DNS cache poisoning attacks? DNS cache poisoning is an  attack methodology used to compromise in the Domain Name System and is made introduceding data artifacts into a DNS name ...

recent articles

Security
Microsoft Patch Tuesday security updates for July 2025 fixed a zero-day

Microsoft released Patch Tuesday security updates for July 2025, which addressed 130 flaws, including one a Microsoft SQL Server zero-day. Microsoft Patch Tuesday security updates for July 2025 ad ...

Pierluigi Paganini July 08, 2025
Intelligence
Italian police arrested a Chinese national suspected of cyberespionage on a U.S. warrant

Italian police arrested a Chinese national linked to Silk Typhoon APT group at Milan's Malpensa Airport on a U.S. warrant. Italian police arrested a Chinese national, Zewei Xu (33), at Milan's Mal ...

Pierluigi Paganini July 08, 2025
Hacking
U.S. CISA adds MRLG, PHPMailer, Rails Ruby on Rails, and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Multi-Router Looking Glass (MRLG), PHPMailer, Rails Ruby on Rails, and Synacor Zimbra Collaboration Suite (ZCS) flaws to its Known Ex ...

Pierluigi Paganini July 08, 2025
Cyber Crime
IT Worker arrested for selling access in $100M PIX cyber heist

Brazil arrests IT worker João Roque for aiding $100M PIX cyber heist, one of Brazil’s biggest banking system breaches. Brazilian police arrested João Roque (48), an IT employee at C&M, for ...

Pierluigi Paganini July 08, 2025
Malware
New Batavia spyware targets Russian industrial enterprises

Since March 2025, fake contract emails have been spreading Batavia spyware in targeted attacks on Russian organizations. Since March 2025, a targeted phishing campaign against Russian organization ...

Pierluigi Paganini July 07, 2025
Security
Taiwan flags security risks in popular Chinese apps after official probe

Taiwan warns Chinese apps like TikTok and WeChat pose security risks due to excessive data collection and data transfers to China. Taiwan National Security Bureau (NSB) warns that Chinese apps lik ...

Pierluigi Paganini July 07, 2025
Hacking
U.S. CISA adds Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Chromium V8 vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agenc ...

Pierluigi Paganini July 07, 2025
Cyber Crime
Hunters International ransomware gang shuts down and offers free decryption keys to all victims

Hunters International ransomware gang announced its shutdown, citing unspecified "recent developments" and acknowledging its impact. The ransomware group Hunters International announced on its dar ...

Pierluigi Paganini July 06, 2025
Security
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 52

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape 10 Things I Hate About Attribution: RomCom vs. TransferLoader� ...

Pierluigi Paganini July 06, 2025
Breaking News
Security Affairs newsletter Round 531 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly Security ...

Pierluigi Paganini July 06, 2025
Malware
North Korea-linked threat actors spread macOS NimDoor malware via fake Zoom updates

North Korea-linked hackers use fake Zoom updates to spread macOS NimDoor malware, targeting crypto firms with stealthy backdoors. North Korea-linked threat actors are targeting Web3 and crypto fir ...

Pierluigi Paganini July 05, 2025
Security
Critical Sudo bugs expose major Linux distros to local Root exploits

Critical Sudo flaws let local users gain root access on Linux systems, the vulnerabilities affect major Linux distributions. Cybersecurity researchers disclosed two vulnerabilities in the Sudo com ...

Pierluigi Paganini July 04, 2025
Laws and regulations
Google fined $314M for misusing idle Android users' data

Google must pay $314M after a California court ruled it misused idle Android users' data. The case ends a class-action suit filed in August 2019. A San Jose jury ruled that Google misused Android ...

Pierluigi Paganini July 04, 2025
Malware
A flaw in Catwatchful spyware exposed logins of +62,000 users

A flaw in Catwatchful spyware exposed logins of 62,000 users, turning the spy tool into a data leak, security researcher Eric Daigle revealed. A flaw in the Catwatchful Android spyware exposed its ...

Pierluigi Paganini July 04, 2025
APT
China-linked group Houken hit French organizations using zero-days

China-linked group Houken hit French govt, telecom, media, finance and transport sectors using Ivanti CSA zero-days, says France’s ANSSI. France's cyber agency ANSSI revealed that a Chinese hack ...

Pierluigi Paganini July 03, 2025
Data Breach
Cybercriminals Target Brazil: 248,725 Exposed in CIEE One Data Breach

Resecurity found a breach in Brazil’s CIEE One platform, exposing PII and documents, later sold by data broker "888" on the dark web. Resecurity identified a data breach of one of the major plat ...

Pierluigi Paganini July 03, 2025
Cyber Crime
Europol shuts down Archetyp Market, longest-running dark web drug marketplace

Europol shuts down Archetyp Market, longest-running dark web drug site, the police arrested the admin in Spain, top vendors hit in Sweden. An international law enforcement operation led by German ...

Pierluigi Paganini July 03, 2025
Uncategorized
Kelly Benefits data breach has impacted 550,000 people, and the situation continues to worsen as the investigation progresses

A data breach at Kelly Benefits has impacted 550,000 people, with the number of affected individuals growing as the investigation continues. Benefits and payroll solutions firm Kelly Benefits has ...

Pierluigi Paganini July 03, 2025
Security
Cisco removed the backdoor account from its Unified Communications Manager

Digital communications technology giant Cisco addressed a static SSH credentials vulnerability in its Unified Communications Manager (Unified CM). A flaw, tracked as CVE-2025-20309 (CVSS score o ...

Pierluigi Paganini July 02, 2025
Cyber Crime
U.S. Sanctions Russia's Aeza Group for aiding crooks with bulletproof hosting

U.S. Treasury sanctions Russia-based Aeza Group and affiliates for aiding cybercriminals via bulletproof hosting services. The U.S. Treasury’s Office of Foreign Assets Control (OFAC) sanctioned ...

Pierluigi Paganini July 02, 2025