MUST READ

Cyber espionage campaign targeted stock exchange executive’s Outlook account

 | 

Russia's FSB Says Foreign Spies Infected Officials' Phones With Malware

 | 

U.S. CISA adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog

 | 

Google Patches Actively Exploited Android Flaw Affecting Millions of Devices

 | 

Why an HP Poly VoIP Phones Bug Could Become an Enterprise Foothold

 | 

Instagram Account Hijacks Expose the Security Risks of AI-Powered Support

 | 

U.S. CISA adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog

 | 

ENISA NIS360 2026: Progress Across the Board, But the Sectors That Matter Most Are Still Falling Short

 | 

GoDaddy found malware on 1,980 WordPress sites using Steam as C2 infrastructure

 | 

Ransomware Operators Keep Business Hours. The Data Proves It

 | 

CVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a Password

 | 

CIFSwitch, a Linux Root Bug Hidden in Plain Sight for 19 Years

 | 

U.S. CISA adds Palo Alto Networks PAN-OS flaw to its Known Exploited Vulnerabilities catalog

 | 

The Pentagon Finally Admits That Location Data Is a Battlefield Problem

 | 

CVE-2026-0257: Rapid7 Caught Attackers Abusing Forged VPN Cookies Against Multiple Customers

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 99

 | 

Security Affairs newsletter Round 579 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

ShinyHunters Leaks Charter Communications Data, Potentially Impacting 5 Million Customers

 | 

Signal Phishing Campaign Targets Journalists and Activists to Steal Backup Recovery Keys

 | 

Botnet of 17 Million Devices Dismantled in the Netherlands

 | 

LATEST NEWS

VIEW ALL
Data Breach
Data of 21 million Mixcloud users available for sale on the dark web
Pierluigi Paganini December 01, 2019

The online music streaming service Mixcloud was recently breached by a hacker that is attempting to sell stolen user data a dark web marketplace. On Friday, the hacker that goes online with the h ...

Hacking
Security Affairs newsletter Round 242
Pierluigi Paganini December 01, 2019

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. Iran – Government blocks Internet acc ...

Hacking
Twitter account of Huawei Mobile Brazil hacked
Pierluigi Paganini December 01, 2019

The official Twitter account of Huawei Mobile Brazil has been hacked and attackers have sent offensive messages to the rival Apple. The official Twitter account of Huawei Mobile Brazil has been h ...

Intelligence
Google warned 12K+ users targeted by state-sponsored hackers
Pierluigi Paganini December 01, 2019

Google revealed that over 12,000 of its users were targeted by state-sponsored hackers in the third quarter of this year. Google's Threat Analysis Group (TAG) revealed that it has detected and bl ...

top articles

Hackers access Booking.com user data, company secures systems
April 13, 2026
Inside ZionSiphon: politically driven malware aims at Israeli water systems
April 17, 2026
RAMP Uncovered: Anatomy of Russia’s Ransomware Marketplace
April 23, 2026
Checkmarx supply chain attack impacts Bitwarden npm distribution path
April 24, 2026
Critical CrowdStrike LogScale bug could have allowed file access, but no exploitation was observed
April 26, 2026

newsletter

Subscribe to my email list and stay
up-to-date!

most popular

VIEW ALL
Intelligence

Cyber espionage campaign targeted stock exchange executive’s Outlook account

June 03, 2026

Security
Russia's FSB Says Foreign Spies Infected Officials' Phones With Malware

June 03, 2026

Security
U.S. CISA adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog

June 03, 2026

Breaking News
Google Patches Actively Exploited Android Flaw Affecting Millions of Devices

June 03, 2026

Security
Why an HP Poly VoIP Phones Bug Could Become an Enterprise Foothold

June 03, 2026

recent articles

Intelligence
Cyber espionage campaign targeted stock exchange executive’s Outlook account

Attackers spent five months silently stealing emails from a stock exchange executive's Outlook account in a suspected espionage operation. A threat actor quietly sat inside a senior executive's Ou ...

Pierluigi Paganini June 03, 2026
Security
Russia's FSB Says Foreign Spies Infected Officials' Phones With Malware

Russia's FSB claims foreign intelligence planted malware on senior officials' phones to intercept calls and activate cameras. No technical evidence, no country named. On June 2, 2026, Russia's Fed ...

Pierluigi Paganini June 03, 2026
Security
U.S. CISA adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security ...

Pierluigi Paganini June 03, 2026
Breaking News
Google Patches Actively Exploited Android Flaw Affecting Millions of Devices

Google fixed 124 Android flaws, including CVE-2025-48595, an actively exploited privilege escalation bug linked to targeted attacks. Google has released its June 2026 Android security updates, fix ...

Pierluigi Paganini June 03, 2026
Security
Why an HP Poly VoIP Phones Bug Could Become an Enterprise Foothold

Rapid7 details a critical unauthenticated overflow in HP Poly VoIP phones that can lead to root RCE, with patches available for affected models. Rapid7’s latest disclosure on CVE-2026-0826 shoul ...

Pierluigi Paganini June 03, 2026
Hacking
Instagram Account Hijacks Expose the Security Risks of AI-Powered Support

Attackers exploited Meta’s AI support chatbot to reset Instagram passwords and hijack accounts without accessing victims’ email inboxes. Attackers abused Meta’s AI-powered support chatbot to ...

Pierluigi Paganini June 02, 2026
Security
U.S. CISA adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CI ...

Pierluigi Paganini June 02, 2026
Reports
ENISA NIS360 2026: Progress Across the Board, But the Sectors That Matter Most Are Still Falling Short

ENISA NIS360 2026 shows cybersecurity improving across EU critical sectors, but health, water, rail, and space remain in the risk zone. ENISA has published its third annual NIS360 report, assessin ...

Pierluigi Paganini June 02, 2026
Breaking News
GoDaddy found malware on 1,980 WordPress sites using Steam as C2 infrastructure

Malware on approximately 2,000 WordPress sites hid C2 instructions in Steam profile comments using invisible Unicode. GoDaddy researchers spotted a command-and-control infrastructure for a malware ...

Pierluigi Paganini June 02, 2026
Cyber Crime
Ransomware Operators Keep Business Hours. The Data Proves It

16,699 ransomware leak posts over 2 years show 84% drop Monday–Friday, peak at European afternoon hours. October spikes yearly. Someone analyzed 16,699 ransomware leak-site posts across 200 gro ...

Pierluigi Paganini June 01, 2026
Hacking
CVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a Password

CVE-2026-8732 in WP Maps Pro lets unauthenticated attackers create WordPress admin accounts. 2,858 attacks blocked in 24 hours. WP Maps Pro plugin allows WordPress site owners to embed Google Maps ...

Pierluigi Paganini June 01, 2026
Security
CIFSwitch, a Linux Root Bug Hidden in Plain Sight for 19 Years

CIFSwitch is a 19-year-old Linux logic bug turning forged CIFS auth keys into root. Affects Mint, CentOS, Rocky, Kali, SLES. CIFSwitch stands apart from typical privilege escalation vulnerabilitie ...

Pierluigi Paganini June 01, 2026
Security
U.S. CISA adds Palo Alto Networks PAN-OS flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Palo Alto Networks PAN-OS flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security ...

Pierluigi Paganini June 01, 2026
Cyber warfare
The Pentagon Finally Admits That Location Data Is a Battlefield Problem

The Pentagon confirmed adversaries are using commercial location data to track U.S. troops, exposing risks tied to smartphones and ad-tech networks. For years, security researchers, privacy advoca ...

Pierluigi Paganini June 01, 2026
Security
CVE-2026-0257: Rapid7 Caught Attackers Abusing Forged VPN Cookies Against Multiple Customers

CVE-2026-0257 lets attackers forge Palo Alto GlobalProtect auth cookies and bypass VPN login. Exploitation confirmed since May 17. Palo Alto Networks addressed the vulnerability CVE-2026-0257 on M ...

Pierluigi Paganini May 31, 2026
Security
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 99

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Ghost CMS Mass Compromised via CVE-2026- ...

Pierluigi Paganini May 31, 2026
Security
Security Affairs newsletter Round 579 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly Security ...

Pierluigi Paganini May 31, 2026
Uncategorized
ShinyHunters Leaks Charter Communications Data, Potentially Impacting 5 Million Customers

Cybercrime group ShinyHunters leaked data allegedly stolen from Charter Communications, exposing millions of customer records after a failed extortion attempt. The ShinyHunters extortion group has ...

Pierluigi Paganini May 30, 2026
Security
Signal Phishing Campaign Targets Journalists and Activists to Steal Backup Recovery Keys

Attackers are texting Signal users posing as Support, asking for backup recovery keys. Once obtained, they can decrypt the entire message history, not just future chats. A phishing campaign is cur ...

Pierluigi Paganini May 30, 2026
Malware
Botnet of 17 Million Devices Dismantled in the Netherlands

Dutch authorities seized 200 servers running a 17-million-device botnet linked to proxy service Asocks. Dutch authorities have taken offline a massive botnet of at least 17 million devices and sei ...

Pierluigi Paganini May 30, 2026