MUST READ

Critical Fortinet FortiClientEMS flaw allows remote code execution

 | 

BeyondTrust fixes critical pre-auth bug allowing remote code execution

 | 

European Commission probes cyberattack on mobile device management system

 | 

Attackers abuse SolarWinds Web Help Desk to install Zoho agents and Velociraptor

 | 

Romania’s national oil pipeline firm Conpet reports cyberattack

 | 

Flickr moves to contain data exposure, warns users of phishing

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 83

 | 

Security Affairs newsletter Round 562 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

DKnife toolkit abuses routers to spy and deliver malware since 2019

 | 

Italian university La Sapienza still offline to mitigate recent cyber attack

 | 

CISA pushes Federal agencies to retire end-of-support edge devices

 | 

Nearly 5 Million Web Servers Found Exposing Git Metadata – Study Reveals Widespread Risk of Code and Credential Leaks

 | 

U.S. CISA adds SmarterTools SmarterMail and React Native Community CLI flaws to its Known Exploited Vulnerabilities catalog

 | 

Hacker claims theft of data from 700,000 Substack users; Company confirms breach

 | 

Pro-Russian group Noname057(16) launched DDoS attacks on Milano Cortina 2026 Winter Olympics

 | 

China-linked Amaranth-Dragon hackers target Southeast Asian governments in 2025

 | 

CVE-2025-22225 in VMware ESXi now used in active ransomware attacks

 | 

Taiwanese operator of Incognito Market sentenced to 30 years over $105M darknet drug ring

 | 

Paris raid on X focuses on child abuse material allegations

 | 

GreyNoise tracks massive Citrix Gateway recon using 63K+ residential proxies and AWS

 | 

Hacking

Pierluigi Paganini January 20, 2015
Two flaws affect some version of the popular VLC media player

The VLC open-source media player is affected by two security vulnerabilities that can allow an attacker to run arbitrary code on vulnerable machines. Some versions of the popular VLC open-source media player are affected by two memory corruption vulnerabilities that could be exploited by an attacker to run arbitrary code on vulnerable machines. The couple of vulnerabilities was […]

Pierluigi Paganini January 20, 2015
Chinese Government runs a MITM attack against Microsoft Outlook

GreatFire revealed that the popular Microsoft Outlook emailing service was subjected to a man-in-the-middle (MITM) attack in China. This time the popular Outlook email service was allegedly hacked by Chinese authorities. The Outlook email service was not reachable in China over the weekend and according the to experts at the GreatFire organization, Chinese Government run a man-in-the-middle […]

Pierluigi Paganini January 19, 2015
Verizon FiOS app flaw exposes 5 Million Customers’ accounts

Security expert discovered a critical flaw in Verizon’s FiOS mobile app that could be exploited to access the email account of any Verizon customer. A new critical vulnerability in exposing million accounts to cyber threats, this time the flaw affects the Verizon FiOS mobile app and could be exploited by attackers to access the email account […]

Pierluigi Paganini January 19, 2015
Anonymous supports FBI investigation of US CENTCOM hack

FBI seems to consider seriously the list of IP addresses involved in the hack of US CENTCOM social media accounts and provided by members of Anonymous. The FBI is investigating on IP addresses released by the Anonymous collective in a wake of the hijacking of the US CENTCOM social media accounts. Anonymous members have collected the IP […]

Pierluigi Paganini January 18, 2015
ADB Pirelli Home routers in Spain and Argentina affected by critical flaws

The Spanish security researcher Eduardo Novella has disclosed details of two critical vulnerabilities affecting a specific ADB Pirelli home wireless router. The security researcher at Dutch security audit firm Fox-IT, Eduardo Novella, has discovered two critical vulnerabilities affecting a model of ADB Pirelli home wireless router. Novella decided to publicly disclose the vulnerabilities because the […]

Pierluigi Paganini January 15, 2015
Notepad++ site hacked by a pro jihad group

The website of the popular Notepad++ editor was hacked and defaced by hacktivists protesting against the recently released “Je suis Charlie” edition. Members of the Tunisian  hacking crew named “Hackers of the Fallaga Team” have compromised and defaced a large number of French websites following the Charlie Hebdo terrorist attack. Hundreds of French websites have been […]

Pierluigi Paganini January 13, 2015
KeySweeper, a cheap USB charger can record keystrokes wirelessly

Security researcher Samy Kamkar has designed a USB wall charger dubbed KeySweeper, which secretly logs keystrokes from Microsoft wireless keyboards nearby. Security researcher Samy Kamkar has designed a cheap USB wall charger that can eavesdrop on almost any Microsoft wireless keyboard. The stealthy Arduino-based device, dubbed “KeySweeper“, works like a generic USB mobile charger, but he has the capability […]

Pierluigi Paganini January 12, 2015
CyberCaliphate group hacked US CENTCOM Social Media Accounts

ISIS supporters have hacked the YouTube and Twitter accounts belonging to the US CENTCOM leaking online internal documents stolen from mobile devices. While Anonymous started the #OpCharlieHebdo campaign against jihadist websites to avenge the attack against the Charlie Hebdo, hackers of the CyberCaliphate group, claiming to support the terrorist group ISIS, have compromised the official […]

Pierluigi Paganini January 12, 2015
MiniDuke, CosmicDuke and OnionDuke have a same matrix

Security experts collected further evidences of the link between the CosmicDuke, Miniduke and OnioDuke Advanced Persistent Threat campaigns. Researchers at F-Secure firm are constantly monitoring the cyber espionage campaigns MiniDuke, CosmicDuke and OnionDuke and provided an interesting update on the hacking operation. Below a short description of the campaigns: MiniDuke: Kaspersky Lab and Hungary’s Laboratory of Cryptography and System Security, or CrySyS, […]

Pierluigi Paganini January 11, 2015
UPDATE Charlie Hebdo TANGO DOWN – Anonymous promises to avenge the massacre

The Anonymous collective published a video message online promising to avenge the Charlie Hebdo massacre by razing jihadist websites. A few hours ago the two brothers believed to be members of the terrorist commando that has attacked on Wednesday the offices of French satirical newspaper Charlie Hebdo were killed. The manhunt is over with another […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Critical Fortinet FortiClientEMS flaw allows remote code execution

Security / February 09, 2026

BeyondTrust fixes critical pre-auth bug allowing remote code execution

Security / February 09, 2026

European Commission probes cyberattack on mobile device management system

Data Breach / February 09, 2026

Attackers abuse SolarWinds Web Help Desk to install Zoho agents and Velociraptor

Security / February 09, 2026

Romania’s national oil pipeline firm Conpet reports cyberattack

Cyber Crime / February 09, 2026