MUST READ

SSHStalker botnet targets Linux servers with legacy exploits and SSH scanning

 | 

U.S. CISA adds Microsoft Office and Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog

 | 

Microsoft Patch Tuesday security updates for February 2026 fix six actively exploited zero-days

 | 

ZeroDayRAT spyware grants attackers total access to mobile devices

 | 

Senegal shuts National ID office after ransomware attack

 | 

Dutch agencies hit by Ivanti EPMM exploit exposing employee contact data

 | 

China-linked APT UNC3886 targets Singapore telcos

 | 

Critical Fortinet FortiClientEMS flaw allows remote code execution

 | 

BeyondTrust fixes critical pre-auth bug allowing remote code execution

 | 

European Commission probes cyberattack on mobile device management system

 | 

Attackers abuse SolarWinds Web Help Desk to install Zoho agents and Velociraptor

 | 

Romania’s national oil pipeline firm Conpet reports cyberattack

 | 

Flickr moves to contain data exposure, warns users of phishing

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 83

 | 

Security Affairs newsletter Round 562 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

DKnife toolkit abuses routers to spy and deliver malware since 2019

 | 

Italian university La Sapienza still offline to mitigate recent cyber attack

 | 

CISA pushes Federal agencies to retire end-of-support edge devices

 | 

Nearly 5 Million Web Servers Found Exposing Git Metadata – Study Reveals Widespread Risk of Code and Credential Leaks

 | 

U.S. CISA adds SmarterTools SmarterMail and React Native Community CLI flaws to its Known Exploited Vulnerabilities catalog

 | 

Breaking News

Pierluigi Paganini July 13, 2018
Ukraine ‘s SBU Security Service reportedly stopped VPNFilter attack at chlorine station

Ukraine ‘s SBU Security Service reportedly stopped VPNFilter attack at chlorine station, the malware infected the network equipment in the facility that supplies water treatment and sewage plants. According to the Interfax-Ukraine media outlet, the VPNFilter hit the LLC Aulska station in Auly (Dnipropetrovsk region), according to the experts the malware aimed at disrupting operations at the chlorine station. […]

Pierluigi Paganini July 13, 2018
Facebook faces £500,000 fine in the U.K. over Cambridge Analytica scandal

Facebook has been fined £500,000 ($664,000) in the U.K. for its conduct in the Cambridge Analytica privacy scandal. Facebook has been fined £500,000 in the U.K., the maximum fine allowed by the UK’s Data Protection Act 1998, for failing to protect users’ personal information. Political consultancy firm Cambridge Analytica improperly collected data of 87 million Facebook users […]

Pierluigi Paganini July 12, 2018
Timehop provides additional details on the recent security breach

Timehop has recently announced to have suffered a data breach that affected 21 million user accounts. The company now shares additional details about the incident. Timehop service aims to help people in finding new ways to connect with each other by analyzing past activities, earlier this month, the company revealed that one or more malicious hackers […]

Pierluigi Paganini July 12, 2018
Popular software VSDC official website was hacked and used to distribute malware

Hackers have compromised the website of VSDC, (http://www.videosoftdev.com), a popular company that provides free audio and video conversion and editing software. Experts from Chinese security firm Qihoo 360 Total Security discovered that attackers hijacked the download links of the popular audio and video editor, VSDC. The experts discovered that hackers hijacked download links on the websites […]

Pierluigi Paganini July 12, 2018
China-based TEMP.Periscope APT targets Cambodia’s elections

FireEye uncovered a large-scale Chinese phishing and hacking campaign powered by Temp.periscope APT aimed at Cambodia’s elections. Security researchers at FireEye have uncovered a large-scale Chinese phishing and hacking campaign aimed at Cambodia’s elections. The hackers distributed a remote access trojan (RAT) and data exfiltration operation targeting the poll. The experts from FireEye attributed the attacks to an APT group tracked […]

Pierluigi Paganini July 11, 2018
Do you want penetrate an airport network? An RDP access to internal machine goes for $10 on the dark web.

The access to a system at a major international airport via RDP (Remote Desktop Protocol) could be paid only $10 on the Dark Web. Experts at McAfee have discovered hackers offering RDP access to compromised machines worldwide while analyzing several black markets. The researchers discovered shops offering between 15 to more than 40,000 RDP connections for sale, the largest […]

Pierluigi Paganini July 11, 2018
Intel pays a $100K bug bounty for the new CPU Spectre 1.1 flaw

A team of researchers has discovered new variant of the famous Spectre attack (Spectre 1.1), and Intel has paid a $100,000 bug bounty as part of its bug bounty program. Intel has paid out a $100,000 bug bounty for new vulnerabilities that are related to the first variant of the Spectre attack (CVE-2017-5753), for this reason, […]

Pierluigi Paganini July 11, 2018
Hacker offered for sale US Military Reaper Drone documents for $200

Researchers at threat intelligence firm Recorded Future have reported that a hacker was trying to sell US Military Reaper drone documents for less than $200. The news is disconcerting, the hackers may have obtained the documents related to the Reaper drone by hacking into at least two computers belonging to U.S. military personnel. “Specifically, an English-speaking hacker claimed […]

Pierluigi Paganini July 11, 2018
A tainted version of Arch Linux PDF reader package found in a user-provided AUR

Hackers have poisoned the Arch Linux PDF reader package named “acroread” that was found in a user-provided Arch User Repository (AUR), Hackers have poisoned the Arch Linux PDF reader package, this means that users who have downloaded recently a PDF viewer named “acroread” may have been compromised. ThePDF reader package has been tainted with a malware and Arch […]

Pierluigi Paganini July 11, 2018
Hackers steal $13.5 Million from Israeli Bancor exchange

The Israeli-based decentralized cryptocurrency Bancor exchange is the last victim of a security breach in the cryptocurrency industry. According to a statement published by the Bancor exchange,  an unknown hacker has stolen roughly $13.5 million worth of cryptocurrency. The security breach occurred on July 9, 2018 at 00:00 UTC, the attackers gained access to one […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

SSHStalker botnet targets Linux servers with legacy exploits and SSH scanning

Malware / February 11, 2026

U.S. CISA adds Microsoft Office and Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog

Security / February 11, 2026

Microsoft Patch Tuesday security updates for February 2026 fix six actively exploited zero-days

Uncategorized / February 10, 2026

ZeroDayRAT spyware grants attackers total access to mobile devices

Malware / February 10, 2026

Senegal shuts National ID office after ransomware attack

Data Breach / February 10, 2026