LATEST NEWS

VIEW ALL
Georgia Tech security breach exposed up to 1.3 million individuals
Pierluigi Paganini April 03, 2019

The Georgia Institute of Technology (Georgia Tech) announced to have suffered a security breach, “an unknown outside entity” had access to data of up to 1.3 million people. The Georgia Institu ...

Crooks use hidden directories of compromised HTTPS sites to deliver malware
Pierluigi Paganini April 03, 2019

Security experts at Zscaler discovered that threat actors are using hidden “well-known” directories of HTTPS sites to store and deliver malicious payloads. Crooks are utilizing hidden “well- ...

Cyber Defense Magazine - April 2019 has arrived. Enjoy it!
Pierluigi Paganini April 02, 2019

Cyber Defense eMagazine April 2019 Edition has arrived. We hope you enjoy this month's edition…packed with over 140 pages of excellent content. InfoSec Knowledge is Power.  We have 7 years of e ...

CVE-2019-0211 Apache flaw allows getting root access via script
Pierluigi Paganini April 02, 2019

The privilege escalation vulnerability (CVE-2019-0211) affecting the Apache HTTP server could be exploited by users with the right to write and run scripts to gain root on Unix systems An importa ...

recent articles

Data Breach
Lidl Notified Online Shop Customers in Germany, Belgium, and the Netherlands of a Data Breach

Lidl disclosed a third-party data breach affecting online shop customers in Germany, Belgium, and the Netherlands. Payment data was not exposed. Lidl contacted customers of its online shop in Germ ...

Pierluigi Paganini July 13, 2026
Security
U.S. CISA adds a Cisco IOS flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a Cisco IOS flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA)� ...

Pierluigi Paganini July 13, 2026
Intelligence
EU Targets FSB-Linked Hackers in New Sanctions Over Cyber Sabotage

EU sanctions target nine people and four entities tied to Russia's FSB over a 15-year cyberespionage and critical infrastructure sabotage campaign. The European Union imposed sanctions on Monday t ...

Pierluigi Paganini July 13, 2026
Cyber Crime
Dutch Nationals Suspected in Odido Hack That Exposed Six Million Customers

Dutch police suspect local hackers behind the Odido breach that exposed 6M customers after a phishing attack and seek public help identifying them. Dutch police have identified strong indications ...

Pierluigi Paganini July 13, 2026
Security
Australia Alerts Organizations to Ongoing CMS Exploitation Attacks

Australia warns of a global campaign exploiting CMS flaws to deploy webshells on WordPress, Joomla, and other websites. Australia's Signals Directorate has issued an alert about a large-scale expl ...

Pierluigi Paganini July 13, 2026
Uncategorized
Ryuk Ransomware Member Pleads Guilty Over Attacks on U.S. Organizations

An alleged Ryuk ransomware member pleaded guilty in the U.S. for helping deploy attacks on American companies and faces up to 15 years in prison. Armenian national Karen Serobovich Vardanyan (34) ...

Pierluigi Paganini July 12, 2026
Hacking
Progress Told ShareFile Customers to Pull the Plug on Their Servers. Here's What We Know.

Progress urged ShareFile Storage Zone customers to shut down internet-facing servers immediately over a credible security threat under investigation. Progress Software sent an urgent email to Shar ...

Pierluigi Paganini July 12, 2026
Breaking News
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 105

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Novel Java-Based QuimaRAT Targets Window ...

Pierluigi Paganini July 12, 2026
Breaking News
Security Affairs newsletter Round 585 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly Security ...

Pierluigi Paganini July 12, 2026
Security
U.S. CISA adds iCagenda and Balbooa Forms flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds iCagenda and Balbooa Forms flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Securit ...

Pierluigi Paganini July 11, 2026
Security
Critical U-Boot Bugs Undermine Secure Boot on Millions of Devices

Binarly found six U-Boot flaws, including two that enable code execution during boot image verification, impacting 50+ releases. Binarly's research team has found six vulnerabilities in U-Boot, th ...

Pierluigi Paganini July 11, 2026
Hacking
Update Now: Critical Zimbra Classic Web Client Flaw Could Expose Mailboxes

Zimbra addressed a critical stored XSS vulnerability in its Classic Web Client that lets malicious emails execute code when opened. Zimbra has released version 10.1.19 to fix a critical stored XSS ...

Pierluigi Paganini July 10, 2026
Cyber Crime
Ransomware Never Stopped: Over 9,000 Confirmed Attacks Since 2018

Ransomware remains above 1,400 attacks yearly since 2023. Qilin leads in 2026, while the U.S. remains the main target. Ransomnews has independently confirmed 9,291 ransomware attacks worldwide bet ...

Pierluigi Paganini July 10, 2026
Security
222 GitHub Repositories Linked to Fake Go Package Malware Operation

Researchers uncovered 222 GitHub repositories spreading malware through fake Go packages, delivering loaders, stealers, RATs, and cryptominers. Socket's security research team started with the inv ...

Pierluigi Paganini July 10, 2026
Cyber Crime
Former Ransomware Negotiator Sentenced to 70 Months in Prison for Secretly Helping BlackCat Gang

A former ransomware negotiator was sentenced to nearly six years for secretly helping BlackCat extort victims while betraying his clients. A U.S. court sentenced former ransomware negotiator Angel ...

Pierluigi Paganini July 10, 2026
Malware
GigaWiper Merges Three Malware Families Into One Destructive Backdoor

Microsoft uncovered GigaWiper, a modular Go backdoor combining three malware families with espionage, remote control, and destructive wiping features. In October 2025, Microsoft's threat intellige ...

Pierluigi Paganini July 10, 2026
Security
INTERPOL Operation First Light Nets 5,811 Arrests and Seizes $293 Million

INTERPOL's Operation First Light 2026 led to 5,811 arrests, blocked $293M in criminal assets, and disrupted global fraud and money laundering networks. INTERPOL coordinated a four-month operation ...

Pierluigi Paganini July 09, 2026
Malware
GodDamn Ransomware Uses PoisonX to Blind Security Software

GodDamn ransomware uses the signed PoisonX driver to disable security tools, marking a more advanced version of the Beast ransomware family. Symantec's Threat Hunter Team found a new ransomware fa ...

Pierluigi Paganini July 09, 2026
Data Breach
AssuranceAmerica Breach Exposes 7 Million Driver’s Licenses After Employee Account Hack

AssuranceAmerica confirmed a breach exposing nearly 7 million driver's licenses after hackers compromised an employee account and stole customer data. U.S. auto insurer AssuranceAmerica has confir ...

Pierluigi Paganini July 09, 2026
Security
Microsoft fixed Defender flaw RoguePlanet (CVE-2026-50656)

Microsoft fixed RoguePlanet (CVE-2026-50656), a Defender flaw allowing local attackers to gain higher privileges through the Malware Protection Engine. Microsoft released security updates for Rogu ...

Pierluigi Paganini July 09, 2026