MUST READ

OpenAI hit by supply chain attack linked to malicious TanStack packages

 | 

Pwn2Own Berlin 2026, Day Two: $385,750 more, Microsoft Exchange falls, and the running total crosses $900K

 | 

CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day

 | 

Ghostwriter group resumes attacks on Ukrainian Government targets

 | 

Researchers uncover YellowKey and GreenPlasma Windows Zero-Days

 | 

Pwn2Own Berlin 2026, Day One: $523,000 paid out, AI products fall

 | 

U.S. CISA adds a flaw in Cisco Catalyst SD-WAN  to its Known Exploited Vulnerabilities catalog

 | 

Linux Kernel bug Fragnesia allows local root access attacks

 | 

Broadcom releases VMware Fusion security update for root access bug

 | 

NGINX Rift: an 18-year-old flaw in the world's most deployed web server just came to light

 | 

FamousSparrow targets Azerbaijani energy sector in multi-wave espionage campaign

 | 

Nitrogen Ransomware claims massive data theft from Foxconn

 | 

Microsoft Patch Tuesday for May 2026 fix 138 bugs, some of them are alarming

 | 

OpenLoop Health confirms January 2026 Data breach affecting 716,000

 | 

Quest KACE SMA flaw CVE-2025-32975: when one unpatched tool opens the door to 60 organizations

 | 

Instructure settles with hackers following massive student data theft

 | 

Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator

 | 

Hackers accessed BWH Hotels reservation system for months

 | 

The world's most "Dangerous" AI, Anthropic’s Mythos, found only one flaw in curl

 | 

Attackers exploit cPanel CVE-2026-41940 to deploy Filemanager Backdoor

 | 

LATEST NEWS

VIEW ALL
Malware
Microsoft warns of RAT delivered through trojanized gaming utilities
Pierluigi Paganini February 28, 2026

Attackers spread trojanized gaming tools to deliver a stealthy RAT using PowerShell, LOLBins, and Defender evasion tactics. Threat actors are tricking users into running trojanized gaming utilitie ...

Mobile
Aeternum botnet hides commands in Polygon smart contracts
Pierluigi Paganini February 27, 2026

Aeternum botnet uses Polygon blockchain smart contracts for C&C, making its infrastructure harder to detect and disrupt. Qrator Labs researchers uncovered Aeternum, a botnet that runs its comm ...

Security
iPhone and iPad are the first consumer devices cleared for NATO ‘RESTRICTED’ classification
Pierluigi Paganini February 27, 2026

Apple’s iPhone and iPad are now NATO-approved for classified use, listed in the alliance’s Information Assurance Product Catalogue. Apple announced that its iPhone and iPad have received NATO ...

Security
Juniper issues emergency patch for critical PTX router RCE
Pierluigi Paganini February 27, 2026

Juniper released an emergency patch for Junos OS Evolved to fix CVE-2026-21902, a critical RCE flaw affecting PTX routers. Juniper Networks issued an out-of-band security update for Junos OS Evolv ...

top articles

Hackers access Booking.com user data, company secures systems
April 13, 2026
Inside ZionSiphon: politically driven malware aims at Israeli water systems
April 17, 2026
RAMP Uncovered: Anatomy of Russia’s Ransomware Marketplace
April 23, 2026
Checkmarx supply chain attack impacts Bitwarden npm distribution path
April 24, 2026
Critical CrowdStrike LogScale bug could have allowed file access, but no exploitation was observed
April 26, 2026

newsletter

Subscribe to my email list and stay
up-to-date!

most popular

VIEW ALL
Hacking

OpenAI hit by supply chain attack linked to malicious TanStack packages

May 16, 2026

Security
Pwn2Own Berlin 2026, Day Two: $385,750 more, Microsoft Exchange falls, and the running total crosses $900K

May 15, 2026

Security
CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day

May 15, 2026

APT
Ghostwriter group resumes attacks on Ukrainian Government targets

May 15, 2026

Hacking
Researchers uncover YellowKey and GreenPlasma Windows Zero-Days

May 15, 2026

recent articles

Hacking
OpenAI hit by supply chain attack linked to malicious TanStack packages

OpenAI said the TanStack supply chain attack compromised two employee devices and exposed credentials from code repositories. OpenAI confirmed that the recent TanStack supply chain attack compromi ...

Pierluigi Paganini May 16, 2026
Security
Pwn2Own Berlin 2026, Day Two: $385,750 more, Microsoft Exchange falls, and the running total crosses $900K

Day two of Pwn2Own Berlin 2026 saw $385,750 earned for 15 zero-days, bringing the total to $908,750 and 39 vulnerabilities over two days. During the second day of Pwn2Own Berlin 2026, security res ...

Pierluigi Paganini May 15, 2026
Security
CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day

Microsoft warned that attackers are exploiting a new Exchange Server zero-day vulnerability, tracked as CVE-2026-42897, in the wild. Microsoft warned that threat actors are actively exploiting a n ...

Pierluigi Paganini May 15, 2026
APT
Ghostwriter group resumes attacks on Ukrainian Government targets

ESET uncovered new Ghostwriter (aka FrostyNeighbor) activity targeting Ukrainian government organizations in a campaign active since March 2026. ESET researchers published a new report documenting ...

Pierluigi Paganini May 15, 2026
Hacking
Researchers uncover YellowKey and GreenPlasma Windows Zero-Days

Researchers disclosed two new Windows zero-days named YellowKey and GreenPlasma affecting BitLocker and the CTFMON framework. A security researcher known as Chaotic Eclipse, also called Nightmare- ...

Pierluigi Paganini May 15, 2026
Hacking
Pwn2Own Berlin 2026, Day One: $523,000 paid out, AI products fall

Pwn2Own Berlin 2026 day one saw 22 entries and 24 zero-days across major software, with researchers earning $523,000 in total rewards. Day one of Pwn2Own Berlin 2026 featured 22 entries targeting ...

Pierluigi Paganini May 15, 2026
Hacking
U.S. CISA adds a flaw in Cisco Catalyst SD-WAN  to its Known Exploited Vulnerabilities catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Cisco Catalyst SD-WAN to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Secu ...

Pierluigi Paganini May 14, 2026
Uncategorized
Linux Kernel bug Fragnesia allows local root access attacks

Fragnesia, a new Linux kernel flaw tracked as CVE-2026-46300, could let local attackers gain root access through page cache corruption. Researchers disclosed a new Linux kernel privilege escalatio ...

Pierluigi Paganini May 14, 2026
Security
Broadcom releases VMware Fusion security update for root access bug

Broadcom patched a high-severity VMware Fusion flaw, CVE-2026-41702, that could let local attackers gain root privileges. Broadcom released a security update for VMware Fusion to address a high-se ...

Pierluigi Paganini May 14, 2026
Hacking
NGINX Rift: an 18-year-old flaw in the world's most deployed web server just came to light

Researchers found a critical 18-year-old buffer overflow flaw in NGINX, tracked as CVE-2026-42945 and named NGINX Rift. If you run NGINX, and statistically speaking, there is a very good chance yo ...

Pierluigi Paganini May 14, 2026
APT
FamousSparrow targets Azerbaijani energy sector in multi-wave espionage campaign

Chinese-linked FamousSparrow repeatedly targeted an Azerbaijani oil and gas company, reusing the same entry point in three intrusions from Dec 2025 to Feb 2026. Chinese-linked threat actor FamousS ...

Pierluigi Paganini May 14, 2026
Uncategorized
Nitrogen Ransomware claims massive data theft from Foxconn

Foxconn confirmed a cyberattack on some North American factories. The Nitrogen ransomware group claims it stole 8TB of data from the firm. Foxconn confirmed that several of its North American fact ...

Pierluigi Paganini May 14, 2026
Uncategorized
Microsoft Patch Tuesday for May 2026 fix 138 bugs, some of them are alarming

Microsoft’s May 2026 Patch Tuesday fixed 138 flaws, including 30 critical bugs, across Windows, Office, Azure, Edge, SQL Server, and more. Microsoft's May 2026 Patch Tuesday patched 138 vulnerab ...

Pierluigi Paganini May 13, 2026
Uncategorized
OpenLoop Health confirms January 2026 Data breach affecting 716,000

In January 2026, telehealth infrastructure firm OpenLoop Health suffered a security breach that exposed information of 716,000 people. OpenLoop Health confirmed a January 2026 cyberattack that ex ...

Pierluigi Paganini May 13, 2026
Security
Quest KACE SMA flaw CVE-2025-32975: when one unpatched tool opens the door to 60 organizations

CVE-2025-32975 is a critical flaw in Quest KACE SMA used for endpoint management. If exploited, it could impact all managed systems across organizations. CVE-2025-32975 is a critical flaw in Quest ...

Pierluigi Paganini May 13, 2026
Cyber Crime
Instructure settles with hackers following massive student data theft

Educational tech firm Instructure reached a deal with hackers after a major Canvas breach exposed data stolen from schools and universities. Educational tech firm Instructure says it reached an ag ...

Pierluigi Paganini May 13, 2026
Security
Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator

Fortinet patched critical flaws in FortiSandbox and FortiAuthenticator that could let attackers remotely execute code on unpatched systems. Fortinet addressed two critical vulnerabilities affectin ...

Pierluigi Paganini May 13, 2026
Data Breach
Hackers accessed BWH Hotels reservation system for months

BWH Hotels says hackers accessed guest reservation data, including names and contacts, for over six months across multiple hotel brands. BWH Hotels disclosed a data breach, with threat actors havi ...

Pierluigi Paganini May 12, 2026
Hacking
The world's most "Dangerous" AI, Anthropic’s Mythos, found only one flaw in curl

Anthropic’s AI found five vulnerabilities in curl, but only one low-severity issue proved to be a real vulnerability. In April, Anthropic made considerable noise announcing Mythos, a new artific ...

Pierluigi Paganini May 12, 2026
Cyber Crime
Attackers exploit cPanel CVE-2026-41940 to deploy Filemanager Backdoor

Attackers are exploiting cPanel flaw CVE-2026-41940 to install the Filemanager backdoor and gain unauthorized admin access. Cybercriminals are actively exploiting the critical cPanel vulnerability ...

Pierluigi Paganini May 12, 2026