Pierluigi Paganini
January 16, 2012
The year 2012 has started in the worst way in terms of cyber security, because we have observed several attacks settled successfully against military organizations and private companies. After the sen ...
Pierluigi Paganini
January 16, 2012
In this hours is circulating in internet the news regarding a new clamorous hack that this time has hit the online retailer Zappos.com, a division of Amazon. According the official announcement of th ...
Pierluigi Paganini
January 16, 2012
India, a nation technologically advanced, of which we have so much discussed in recent weeks. We have discussed about the interference of its government obsessed with desire to control private citizen ...
Pierluigi Paganini
January 15, 2012
To news like this we are dangerously getting used, the scenarios change but the dynamics are often the same, viruses used such as cyber weapon that infect critical structures, causing loss of valuable ...
April 23, 2026
Canadian authorities arrested a 23-year-old Ottawa man accused of running the Kimwolf DDoS botnet. The US is now seeking extradition. US authorities have charged 23-year-old Jacob Butler (aka “D ...
Pierluigi Paganini
May 22, 2026
Hunt.io mapped 1,350+ C2 servers across the Middle East, revealing how a small group of providers quietly supports major malware activity. For years, threat intelligence focused mostly on malware ...
Pierluigi Paganini
May 22, 2026
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft and Adobe flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agenc ...
Pierluigi Paganini
May 21, 2026
Police seized First VPN in a global crackdown, exposed its cybercrime users, and shut down infrastructure tied to ransomware and data theft. A major international law enforcement operation has tak ...
Pierluigi Paganini
May 21, 2026
Apple 2025 fraud report shows major App Store protections: over 2M apps rejected, 1B fake accounts blocked, and billions in fraud prevented. Apple 's annual fraud prevention report for 2025 paints ...
Pierluigi Paganini
May 21, 2026
Attackers bypassed MFA on patched SonicWall Gen6 VPNs because admins missed extra manual steps required to fully fix the flaw. There is a particular kind of security failure that is harder to catc ...
Pierluigi Paganini
May 21, 2026
Cisco fixed a critical Secure Workload flaw (CVE-2026-20223) that could let attackers gain Site Admin privileges through crafted API requests. Cisco released patches for a critical vulnerability, ...
Pierluigi Paganini
May 21, 2026
Discord now enables end-to-end encryption by default for all voice and video calls, making conversations inaccessible even to the platform itself. No announcement fanfare, no opt-in required, no s ...
Pierluigi Paganini
May 21, 2026
PinTheft is a Linux LPE flaw in the RDS subsystem with public exploit code. Arch Linux users face the highest risk and should patch immediately. The wave of Linux local privilege escalation vulner ...
Pierluigi Paganini
May 20, 2026
Microsoft acknowledged the YellowKey BitLocker bypass flaw and released mitigations, urging admins to disable autofstx.exe and enable TPM+PIN. A week after Chaotic Eclipse publicly dropped the Yel ...
Pierluigi Paganini
May 20, 2026
Carding forum B1ack's Stash claims to have released millions of stolen CVV2 payment card records for free after suspending sellers. B1ack's Stash, one of the most active stolen card marketplaces o ...
Pierluigi Paganini
May 20, 2026
One employee installed a trojanized VS Code extension. Result: ~3,800 GitHub internal repositories exfiltrated. TeamPCP claims credit, wants $50K. There is something almost ironic about GitHub, th ...
Pierluigi Paganini
May 20, 2026
DirtyDecrypt (CVE-2026-31635): working PoC out for a Linux kernel LPE flaw. Missing COW guard in rxgk_decrypt_skb lets local attackers reach root. After Copy Fail, Dirty Frag, and Fragnesia, here ...
Pierluigi Paganini
May 20, 2026
A Huawei zero-day flaw reportedly caused Luxembourg’s 2025 nationwide outage, disrupting landline, 4G/5G, and emergency services On July 23, 2025, a nationwide telecom outage in Luxembourg was r ...
Pierluigi Paganini
May 20, 2026
Drupal Is Pushing an Emergency Security Update Tomorrow. If You Run a Drupal Site, This Is Not One to Miss. Something significant is coming out of the Drupal project tomorrow, and the way the anno ...
Pierluigi Paganini
May 19, 2026
Microsoft disrupted Fox Tempest, a malware-signing-as-a-service (MSaaS) that allowed attackers to sign malware with fake trusted certificates. Microsoft said it disrupted a cybercrime operation ru ...
Pierluigi Paganini
May 19, 2026
Poland told officials to stop using the popular instant messaging app Signal after cyberattacks targeted government accounts. Poland has instructed government officials to stop using Signal for se ...
Pierluigi Paganini
May 19, 2026
INTERPOL led Operation Ramz in MENA, resulting in 201 arrests and 382 suspects tied to cybercrime networks. INTERPOL coordinated Operation Ramz across the Middle East and North Africa, leading to ...
Pierluigi Paganini
May 19, 2026
Shai-Hulud worm copycats are already attacking NPM developers after its source code leaked, enabling fast supply chain exploitation. The first copycats of the Shai-Hulud worm have already started ...
Pierluigi Paganini
May 19, 2026
Grafana confirmed a GitHub token breach that exposed source code, but said no customer data or systems were affected. Grafana Labs confirmed a security incident after the extortion group Coinbase ...
Pierluigi Paganini
May 18, 2026
