MUST READ

Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator

 | 

Hackers accessed BWH Hotels reservation system for months

 | 

The world's most "Dangerous" AI, Anthropic’s Mythos, found only one flaw in curl

 | 

Attackers exploit cPanel CVE-2026-41940 to deploy Filemanager Backdoor

 | 

WannaCry, the ransomware attack that changed the history of cybersecurity

 | 

Android banking Trojan TrickMo evolves using TON network for C2

 | 

Identity security firm SailPoint discloses GitHub repository breach

 | 

Google warns artificial intelligence is accelerating cyberattacks and zero-day exploits

 | 

Crimenetwork returns after takedown, dismantled again by German authorities

 | 

U.S. CISA adds a flaw in BerriAI LiteLLM to its Known Exploited Vulnerabilities catalog

 | 

Instagram removed end-to-end encryption for DMs. What should users do?

 | 

New cPanel vulnerabilities could allow file access and remote code execution

 | 

Official JDownloader site served malware to Windows and Linux users between May 6 and May 7

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 96

 | 

Quasar Linux RAT (QLNX): A Fileless Linux Implant Built for Stealth and Persistence

 | 

Braintrust security incident raises concerns over AI supply chain risks

 | 

RansomHouse says it breached Trellix and exposes internal systems

 | 

Cyberattacks on Poland's Water Plants: A Blueprint for Hybrid Warfare

 | 

Zara Data Breach: 197,000 Customers Exposed in Third-Party Security Incident

 | 

Dirty Frag: A new Linux privilege escalation vulnerability is already in the wild

 | 

LATEST NEWS

VIEW ALL
Intelligence
Why consider an enemy Iran and not Russia?
Pierluigi Paganini March 13, 2012

There is no doubt that through the analysis of the operations of a State in cyber space it is possible to create a political profile of the country itself, discover the level of technology available ...

Security
Give me your mobile and I'll tell you who you are!
Pierluigi Paganini March 12, 2012

No doubt the last two years witnessed the true revolution in information technology world is the development and deployment of mobile systems. I speak of mobile systems and I avoid simply to define ...

Intelligence
Spying on Facebook and not only, it's emergency
Pierluigi Paganini March 11, 2012

A few days ago I wrote an article on cyber espionage and its higher incidence in the computer crimes. What are the figures who most frequently perform operations of this type? An interest in cyber esp ...

Cyber Crime
Anonymous, DNS Amplification Attacks for Operation Global Blackout
Pierluigi Paganini March 09, 2012

In this first couple of months of 2012 we have assisted to an escalation of cyber attacks made by  groups of hacktivist, first Anonymous, that have hit main institutions and agencies all over the w ...

top articles

Hackers access Booking.com user data, company secures systems
April 13, 2026
Inside ZionSiphon: politically driven malware aims at Israeli water systems
April 17, 2026
RAMP Uncovered: Anatomy of Russia’s Ransomware Marketplace
April 23, 2026
Checkmarx supply chain attack impacts Bitwarden npm distribution path
April 24, 2026
Critical CrowdStrike LogScale bug could have allowed file access, but no exploitation was observed
April 26, 2026

newsletter

Subscribe to my email list and stay
up-to-date!

most popular

VIEW ALL
Security

Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator

May 13, 2026

Data Breach
Hackers accessed BWH Hotels reservation system for months

May 12, 2026

Hacking
The world's most "Dangerous" AI, Anthropic’s Mythos, found only one flaw in curl

May 12, 2026

Cyber Crime
Attackers exploit cPanel CVE-2026-41940 to deploy Filemanager Backdoor

May 12, 2026

Malware
WannaCry, the ransomware attack that changed the history of cybersecurity

May 12, 2026

recent articles

Security
Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator

Fortinet patched critical flaws in FortiSandbox and FortiAuthenticator that could let attackers remotely execute code on unpatched systems. Fortinet addressed two critical vulnerabilities affectin ...

Pierluigi Paganini May 13, 2026
Data Breach
Hackers accessed BWH Hotels reservation system for months

BWH Hotels says hackers accessed guest reservation data, including names and contacts, for over six months across multiple hotel brands. BWH Hotels disclosed a data breach, with threat actors havi ...

Pierluigi Paganini May 12, 2026
Hacking
The world's most "Dangerous" AI, Anthropic’s Mythos, found only one flaw in curl

Anthropic’s AI found five vulnerabilities in curl, but only one low-severity issue proved to be a real vulnerability. In April, Anthropic made considerable noise announcing Mythos, a new artific ...

Pierluigi Paganini May 12, 2026
Cyber Crime
Attackers exploit cPanel CVE-2026-41940 to deploy Filemanager Backdoor

Attackers are exploiting cPanel flaw CVE-2026-41940 to install the Filemanager backdoor and gain unauthorized admin access. Cybercriminals are actively exploiting the critical cPanel vulnerability ...

Pierluigi Paganini May 12, 2026
Malware
WannaCry, the ransomware attack that changed the history of cybersecurity

WannaCry showed how unpatched flaws and leaked cyber tools can cripple global systems, reshaping cybersecurity defenses worldwide. In memory of the day the digital world was shaken, but learned to ...

Pierluigi Paganini May 12, 2026
Malware
Android banking Trojan TrickMo evolves using TON network for C2

ThreatFabric found a new TrickMo Android trojan focused on stealth and persistence, moving its command-and-control traffic to the TON network. Security researchers at ThreatFabric have recently id ...

Pierluigi Paganini May 12, 2026
Data Breach
Identity security firm SailPoint discloses GitHub repository breach

SailPoint disclosed a GitHub repository breach on April 20. The company contained the incident and said no customer data was affected. SailPoint is a cybersecurity company that provides identity s ...

Pierluigi Paganini May 11, 2026
Artificial Intelligence
Google warns artificial intelligence is accelerating cyberattacks and zero-day exploits

Google says hackers now use AI to create exploits, automate attacks, evade defenses, and target AI supply chains at scale. Artificial intelligence is rapidly changing the cyber threat landscape, a ...

Pierluigi Paganini May 11, 2026
Cyber Crime
Crimenetwork returns after takedown, dismantled again by German authorities

German police shut down a revived Crimenetwork marketplace with 22,000 users and 100+ sellers months after the original takedown. German police dismantled a resurrected version of the German-langu ...

Pierluigi Paganini May 11, 2026
Security
U.S. CISA adds a flaw in BerriAI LiteLLM to its Known Exploited Vulnerabilities catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in BerriAI LiteLLM to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security A ...

Pierluigi Paganini May 11, 2026
Security
Instagram removed end-to-end encryption for DMs. What should users do?

Instagram removes direct messages (DM) end-to-end encryption May 8, 2026, letting Meta access chats. Users should download backups amid privacy concerns and U.S. law pressure. Starting May 8, 2026 ...

Pierluigi Paganini May 11, 2026
Security
New cPanel vulnerabilities could allow file access and remote code execution

cPanel fixed three flaws that could allow file reads, code execution, and privilege escalation. No active exploitation has been reported yet. cPanel has released security updates to fix three vuln ...

Pierluigi Paganini May 10, 2026
Malware
Official JDownloader site served malware to Windows and Linux users between May 6 and May 7

JDownloader website was hacked to distribute malicious Windows and Linux installers carrying a Python RAT between May 6–7, 2026. JDownloader official website was compromised in a supply chain at ...

Pierluigi Paganini May 10, 2026
Malware
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 96

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter CloudZ RAT potentially steals OTP messag ...

Pierluigi Paganini May 10, 2026
Malware
Quasar Linux RAT (QLNX): A Fileless Linux Implant Built for Stealth and Persistence

Researchers uncovered QLNX, a Linux RAT targeting developers to steal credentials, log keystrokes, monitor systems, and enable remote access. Security researchers discovered a previously undocumen ...

Pierluigi Paganini May 09, 2026
Data Breach
Braintrust security incident raises concerns over AI supply chain risks

Braintrust warned customers to rotate API keys after hackers breached an AWS account, exposing secrets tied to cloud-based AI models. AI observability startup Braintrust warned customers to rotate ...

Pierluigi Paganini May 09, 2026
Cyber Crime
RansomHouse says it breached Trellix and exposes internal systems

RansomHouse claimed responsibility for the Trellix breach, adding the security firm to its Tor data leak site and sharing screenshots of internal systems. The RansomHouse ransomware group has clai ...

Pierluigi Paganini May 08, 2026
Security
Cyberattacks on Poland's Water Plants: A Blueprint for Hybrid Warfare

Poland's ABW confirmed hackers breached ICS at five water plants, gaining ability to alter equipment settings. Russia-linked APT groups suspected. Poland’s Internal Security Agency (ABW) has pub ...

Pierluigi Paganini May 08, 2026
Cyber Crime
Zara Data Breach: 197,000 Customers Exposed in Third-Party Security Incident

Nearly 200,000 Zara customers were exposed in a third-party breach linked to ShinyHunters, revealing emails, purchase history, and support data. Personal data belonging to nearly 197,000 Zara cust ...

Pierluigi Paganini May 08, 2026
Hacking
Dirty Frag: A new Linux privilege escalation vulnerability is already in the wild

Dirty Frag: unpatched Linux kernel flaw grants root access on Ubuntu, RHEL and Fedora. A working exploit is already public. Security researchers have disclosed a new unpatched vulnerability in th ...

Pierluigi Paganini May 08, 2026