MUST READ

Australian man jailed for 7+ years over airport and in-flight Wi-Fi attacks

 | 

Emerging Android threat ‘Albiriox’ enables full On‑Device Fraud

 | 

U.S. CISA adds an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 73

 | 

Security Affairs newsletter Round 552 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Contagious Interview campaign expands with 197 npm Ppackages spreading new OtterCookie malware

 | 

Attackers stole member data from French Soccer Federation

 | 

Thousands of sensitive secrets published on JSONFormatter and CodeBeautify

 | 

New Mirai variant ShadowV2 tests IoT exploits amid AWS disruption

 | 

Asahi says crooks stole data of approximately 2M customers and employees

 | 

OpenAI data may have been exposed after a cyberattack on analytics firm Mixpanel

 | 

New ASUS firmware patches critical AiCloud vulnerability

 | 

For the first time, a RomCom payload has been observed being distributed via SocGholish

 | 

Multiple London councils faced a cyberattack

 | 

Emergency alerts go dark after cyberattack on OnSolve CodeRED

 | 

Dissecting a new malspam chain delivering Purelogs infostealer

 | 

FBI: bank impersonators fuel $262M surge in account takeover fraud

 | 

Morphisec warns StealC V2 malware spread through weaponized blender files

 | 

CISA: Spyware and RATs used to target WhatsApp and Signal Users

 | 

Harvard reports vishing breach exposing alumni and donor contact data

 | 

LATEST NEWS

VIEW ALL
Malware
Welcome on board
Pierluigi Paganini November 01, 2011

Welcome on board Welcome! If you are curious, interested in the subject and looking for a place with a few clicks you canbe updated on what happens in the world … well you you’ve fo ...

top articles

Emergency alerts go dark after cyberattack on OnSolve CodeRED
November 26, 2025
Dissecting a new malspam chain delivering Purelogs infostealer
November 26, 2025
CISA: Spyware and RATs used to target WhatsApp and Signal Users
November 25, 2025
Multiple London councils faced a cyberattack
November 26, 2025
OpenAI data may have been exposed after a cyberattack on analytics firm Mixpanel
November 27, 2025

newsletter

Subscribe to my email list and stay
up-to-date!

most popular

VIEW ALL
Cyber Crime

Australian man jailed for 7+ years over airport and in-flight Wi-Fi attacks

December 01, 2025

Malware
Emerging Android threat ‘Albiriox’ enables full On‑Device Fraud

December 01, 2025

Security
U.S. CISA adds an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog

December 01, 2025

Uncategorized
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 73

November 30, 2025

Breaking News
Security Affairs newsletter Round 552 by Pierluigi Paganini – INTERNATIONAL EDITION

November 30, 2025

recent articles

Cyber Crime
Australian man jailed for 7+ years over airport and in-flight Wi-Fi attacks

Australian Michael Clapsis got 7 years and 4 months in prison for Wi-Fi attacks at airports and on flights, stealing sensitive data. Australian man Michael Clapsis (44) was sentenced to 7 years an ...

Pierluigi Paganini December 01, 2025
Malware
Emerging Android threat ‘Albiriox’ enables full On‑Device Fraud

Albiriox is new Android MaaS malware enabling on-device fraud and real-time control. It targets 400+ banking, fintech, crypto, and payment apps. Albiriox is a new Android malware sold under a malw ...

Pierluigi Paganini December 01, 2025
Security
U.S. CISA adds an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency ...

Pierluigi Paganini December 01, 2025
Uncategorized
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 73

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Analysis of ShadowPad Attack Exploiting ...

Pierluigi Paganini November 30, 2025
Breaking News
Security Affairs newsletter Round 552 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly Security ...

Pierluigi Paganini November 30, 2025
APT
Contagious Interview campaign expands with 197 npm Ppackages spreading new OtterCookie malware

North Korea-linked actors behind Contagious Interview uploaded 197 new malicious npm packages to distribute a new OtterCookie malware version. North Korea-linked threat actors added 197 new malici ...

Pierluigi Paganini November 30, 2025
Data Breach
Attackers stole member data from French Soccer Federation

The French Soccer Federation (FFF) disclosed a data breach after hackers used a compromised account to steal member data. A compromised account allowed attackers to breach the French Soccer Federa ...

Pierluigi Paganini November 28, 2025
Security
Thousands of sensitive secrets published on JSONFormatter and CodeBeautify

Users of JSONFormatter and CodeBeautify leaked thousands of sensitive secrets, including credentials and private keys, WatchTowr warns. WatchTowr’s latest research reveals massive leaks of passw ...

Pierluigi Paganini November 28, 2025
Malware
New Mirai variant ShadowV2 tests IoT exploits amid AWS disruption

ShadowV2, a new Mirai-based botnet, briefly targeted vulnerable IoT devices during October’s AWS outage, likely as a test run. During the late-October AWS disruption, FortiGuard Labs researchers ...

Pierluigi Paganini November 28, 2025
Data Breach
Asahi says crooks stole data of approximately 2M customers and employees

Asahi says hackers stole data of approximately 2M customers and employees before a ransomware attack crippled its Japan operations. Threat actors hit Asahi with a ransomware attack in September, s ...

Pierluigi Paganini November 27, 2025
Data Breach
OpenAI data may have been exposed after a cyberattack on analytics firm Mixpanel

OpenAI warns some users that a cyberattack on analytics firm Mixpanel may have exposed their data. Mixpanel is a product analytics platform that companies use to understand how people interact wi ...

Pierluigi Paganini November 27, 2025
Internet of Things
New ASUS firmware patches critical AiCloud vulnerability

ASUS released new firmware to address multiple vulnerabilities, including a critical authentication bypass flaw in routers with AiCloud enabled. ASUS has issued new firmware addressing nine securi ...

Pierluigi Paganini November 27, 2025
Security
For the first time, a RomCom payload has been observed being distributed via SocGholish

RomCom malware used the SocGholish fake update loader to deliver Mythic Agent to a U.S. civil engineering firm. In September 2025, Arctic Wolf Labs observed RomCom threat actors delivering the Myt ...

Pierluigi Paganini November 26, 2025
Security
Multiple London councils faced a cyberattack

Multiple London councils, including Chelsea and Westminster, faced a cyberattack that may have exposed resident data. Authorities are actively investigating the incident. A cyberattack struck mult ...

Pierluigi Paganini November 26, 2025
Cyber Crime
Emergency alerts go dark after cyberattack on OnSolve CodeRED

Cyberattack on OnSolve CodeRED disrupted emergency alert services for U.S. state, local, police, and fire agencies. A cyberattack on the OnSolve CodeRED alert platform disrupted emergency notifica ...

Pierluigi Paganini November 26, 2025
Cyber Crime
Dissecting a new malspam chain delivering Purelogs infostealer

The AISI Research Center's Cybersecurity Observatory publishes the report "Dissecting a new malspam chain delivering Purelogs infostealer" - November 25, 2025. Organizational and personal security ...

Pierluigi Paganini November 26, 2025
Cyber Crime
FBI: bank impersonators fuel $262M surge in account takeover fraud

Cybercriminals posing as banks drove a major spike in account takeover fraud this year, stealing over $262 million, the FBI warned. The FBI warns of a surge in account takeover fraud, with crimina ...

Pierluigi Paganini November 25, 2025
Cyber Crime
Morphisec warns StealC V2 malware spread through weaponized blender files

StealC V2 spread via malicious Blender files on 3D model sites like CGTrader, abusing Blender’s ability to run hidden Python scripts. Cybersecurity firm Morphisec reported that Russian threat a ...

Pierluigi Paganini November 25, 2025
Malware
CISA: Spyware and RATs used to target WhatsApp and Signal Users

CISA warns that threat actors are actively using commercial spyware and RATs to target users of mobile messaging apps WhatsApp and Signal. The U.S. Cybersecurity and Infrastructure Security Agency ...

Pierluigi Paganini November 25, 2025
Security
Harvard reports vishing breach exposing alumni and donor contact data

Harvard revealed its Alumni Affairs systems suffered a vishing breach, exposing emails, phone numbers, addresses, donation data and biographical info. Harvard revealed that threat actors breached ...

Pierluigi Paganini November 24, 2025