MUST READ

SmartLoader hackers clone Oura MCP project to spread StealC malware

 | 

Polish cybercrime Police arrest man linked to Phobos ransomware operation

 | 

Poorly crafted phishing campaign leverages bogus security incident report

 | 

South Korea slaps $25M fine on Dior, Louis Vuitton, Tiffany over Salesforce breach

 | 

Encrypted RCS messaging support lands in Apple’s iOS 26.4 developer build

 | 

Hackers steal OpenClaw configuration in emerging AI agent threat

 | 

Hackers sell stolen Eurail traveler information on dark web

 | 

A security flaw at DavaIndia Pharmacy allowed attackers to access customers' data and more

 | 

Microsoft alerts on DNS-based ClickFix variant delivering malware via nslookup

 | 

Google fixes first actively exploited Chrome zero-day of 2026

 | 

Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 84

 | 

Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Fintech firm Figure disclosed data breach after employee phishing attack

 | 

U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog

 | 

Suspected Russian hackers deploy CANFAIL malware against Ukraine

 | 

New threat actor UAT-9921 deploys VoidLink against enterprise sectors

 | 

Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release

 | 

Google: state-backed hackers exploit Gemini AI for cyber recon and attacks

 | 

U.S. CISA adds SolarWinds Web Help Desk, Notepad++, Microsoft Configuration Manager, and Apple devices flaws to its Known Exploited Vulnerabilities catalog

 | 

LATEST NEWS

VIEW ALL
Malware
Welcome on board
Pierluigi Paganini November 01, 2011

Welcome on board Welcome! If you are curious, interested in the subject and looking for a place with a few clicks you canbe updated on what happens in the world … well you you’ve fo ...

top articles

DOJ releases details alleged talented hacker working for Jeffrey Epstein
January 31, 2026
Flickr moves to contain data exposure, warns users of phishing
February 09, 2026
LummaStealer activity spikes post-law enforcement disruption
February 12, 2026
Multiple Endpoint Manager bugs patched by Ivanti, including remote auth bypass
February 12, 2026
Volvo Group hit in massive Conduent data breach
February 11, 2026

newsletter

Subscribe to my email list and stay
up-to-date!

most popular

VIEW ALL
Artificial Intelligence

SmartLoader hackers clone Oura MCP project to spread StealC malware

February 17, 2026

Cyber Crime
Polish cybercrime Police arrest man linked to Phobos ransomware operation

February 17, 2026

Security
Poorly crafted phishing campaign leverages bogus security incident report

February 17, 2026

Hacking
South Korea slaps $25M fine on Dior, Louis Vuitton, Tiffany over Salesforce breach

February 17, 2026

Security
Encrypted RCS messaging support lands in Apple’s iOS 26.4 developer build

February 17, 2026

recent articles

Artificial Intelligence
SmartLoader hackers clone Oura MCP project to spread StealC malware

Hackers used a fake Oura MCP server to trick users into downloading malware that installs the StealC info-stealer. Straiker's AI Research (STAR) Labs team uncovered a SmartLoader campaign in which ...

Pierluigi Paganini February 17, 2026
Cyber Crime
Polish cybercrime Police arrest man linked to Phobos ransomware operation

Officers from Poland's Central Bureau of Cybercrime Control (CBZC) police arrested a 47-year-old man linked to the Phobos ransomware operation. Polish authorities arrested a 47-year-old man suspec ...

Pierluigi Paganini February 17, 2026
Security
Poorly crafted phishing campaign leverages bogus security incident report

Attackers used a fake PDF incident report hosted on AWS to scare victims into enabling 2FA, though a poorly crafted phishing campaign. Freelance security consultant Xavier Mertens reported a phis ...

Pierluigi Paganini February 17, 2026
Hacking
South Korea slaps $25M fine on Dior, Louis Vuitton, Tiffany over Salesforce breach

South Korea fined Dior, Louis Vuitton, and Tiffany $25M after hackers breached their Salesforce systems, exposing customer data. South Korea’s Personal Information Protection Commission fined lu ...

Pierluigi Paganini February 17, 2026
Security
Encrypted RCS messaging support lands in Apple’s iOS 26.4 developer build

Apple is testing end-to-end encrypted Rich Communications Services (RCS) messaging in the iOS 26.4 developer beta. Apple has added end-to-end encrypted RCS messaging to the iOS and iPadOS 26.4 dev ...

Pierluigi Paganini February 17, 2026
Malware
Hackers steal OpenClaw configuration in emerging AI agent threat

Researchers found an infostealer stole a victim’s OpenClaw configuration, marking a shift toward targeting personal AI agents. Cybersecurity researchers have uncovered a new information stealer ...

Pierluigi Paganini February 17, 2026
Data Breach
Hackers sell stolen Eurail traveler information on dark web

Eurail B.V. revealed that traveler data were stolen in a recent security breach, and are now being sold on the dark web. Eurail B.V. confirmed that the traveler data stolen in a breach earlier thi ...

Pierluigi Paganini February 17, 2026
Security
A security flaw at DavaIndia Pharmacy allowed attackers to access customers' data and more

A security flaw at DavaIndia Pharmacy exposed customer data and gave outsiders full admin control of its systems. DavaIndia is a large Indian pharmacy retail chain focused on selling affordable ge ...

Pierluigi Paganini February 16, 2026
Data Breach
ShinyHunters leaked 600K+ Canada Goose customer records, but the firm denies it was breached

ShinyHunters leaked 600,000+ Canada Goose customer records, though the company insists its systems were not breached. Data extortion group ShinyHunters has published over 600,000 Canada Goose cust ...

Pierluigi Paganini February 16, 2026
Hacking
Microsoft alerts on DNS-based ClickFix variant delivering malware via nslookup

Microsoft warns of a new ClickFix variant that tricks users into running DNS commands to fetch malware via nslookup. Microsoft has revealed a new ClickFix variant that deceives users into running ...

Pierluigi Paganini February 16, 2026
Security
Google fixes first actively exploited Chrome zero-day of 2026

Google patched Chrome zero-day CVE-2026-2441, a high-severity CSS use-after-free flaw actively exploited in the wild. Google has released urgent security updates to address a high-severity zero-da ...

Pierluigi Paganini February 16, 2026
APT
Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

Researchers found malicious npm and PyPI packages tied to a fake recruitment campaign linked to North Korea’s Lazarus Group. ReversingLabs researcher uncovered new malicious packages on npm and ...

Pierluigi Paganini February 15, 2026
Malware
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 84

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Stan Ghouls targeting Russia and Uzbekis ...

Pierluigi Paganini February 15, 2026
Security
Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly Security ...

Pierluigi Paganini February 15, 2026
Data Breach
Fintech firm Figure disclosed data breach after employee phishing attack

Fintech firm Figure confirmed a data breach after hackers used social engineering to trick an employee and steal a limited number of files. Blockchain-based lending firm Figure confirmed a data br ...

Pierluigi Paganini February 14, 2026
Breaking News
U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Sec ...

Pierluigi Paganini February 14, 2026
Hacking
Suspected Russian hackers deploy CANFAIL malware against Ukraine

A new alleged Russia-linked APT group targeted Ukrainian defense, government, and energy groups, with CANFAIL malware. Google Threat Intelligence Group identified a previously undocumented threat ...

Pierluigi Paganini February 14, 2026
Artificial Intelligence
New threat actor UAT-9921 deploys VoidLink against enterprise sectors

A new threat actor, UAT-9921, uses the modular VoidLink framework to target technology and financial organizations, Cisco Talos reports. Cisco Talos spotted a previously unknown threat actor, trac ...

Pierluigi Paganini February 13, 2026
Uncategorized
Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release

Attackers quickly targeted BeyondTrust flaw CVE-2026-1731 after a PoC was released, enabling unauthenticated remote code execution. Threat actors rapidly began exploiting a newly patched BeyondTru ...

Pierluigi Paganini February 13, 2026
Artificial Intelligence
Google: state-backed hackers exploit Gemini AI for cyber recon and attacks

Google says nation-state actors used Gemini AI for reconnaissance and attack support in cyber operations. Google DeepMind and GTIG report a rise in model extraction or “distillation” attacks a ...

Pierluigi Paganini February 13, 2026