MUST READ

Broadcom patches VMware Zero-Day actively exploited by UNC5174

 | 

UK convicts Chinese national in £5.5B crypto fraud, marks world’s largest Bitcoin seizure

 | 

U.S. CISA adds Adminer, Cisco IOS, Fortra GoAnywhere MFT, Libraesva ESG, and Sudo flaws to its Known Exploited Vulnerabilities catalog

 | 

Asahi halts ordering, shipping, and customer service after cyberattack

 | 

Scattered Spider, ShinyHunters Restructure - New Attacks Underway 

 | 

UK grants £1.5B loan to Jaguar Land Rover after cyberattack

 | 

Harrods alerts customers to new data breach linked to third-party provider

 | 

Akira Ransomware bypasses MFA on SonicWall VPNs

 | 

Despite Russian influence, Moldova votes Pro-EU, highlighting future election risks

 | 

Dutch teens arrested for spying on behalf of pro-Russian hackers

 | 

Cyberattack on Co-op leaves shelves empty, data stolen, and $275M in lost revenue

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 64

 | 

Security Affairs newsletter Round 543 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Ohio’s Union County suffers ransomware attack impacting 45,000 people

 | 

ForcedLeak flaw in Salesforce Agentforce exposes CRM data via Prompt Injection

 | 

Microsoft uncovers new variant of XCSSET macOS malware in targeted attacks

 | 

Hackers exploit Fortra GoAnywhere flaw before public alert

 | 

UK NCSC warns that attackers exploited Cisco firewall zero-days to deploy RayInitiator and LINE VIPER malware

 | 

Google warns of Brickstorm backdoor targeting U.S. legal and tech sectors

 | 

U.S. CISA adds CISCO Secure Firewall ASA and Secure FTD flaws to its Known Exploited Vulnerabilities catalog

 | 

LATEST NEWS

VIEW ALL
Hacking
An air transport security system flaw allowed to bypass airport security screenings
Pierluigi Paganini September 01, 2024

A vulnerability in an air transport security system allowed unauthorized individuals to bypass airport security screenings. The Known Crewmember (KCM) and Cockpit Access Security System (CASS) pro ...

Malware
SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 9
Pierluigi Paganini September 01, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Unveiling "sedexp": A Stealthy Linux Malware Exploiting udev ...

Breaking News
Security Affairs newsletter Round 487 by Pierluigi Paganini – INTERNATIONAL EDITION
Pierluigi Paganini September 01, 2024

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffair ...

Breaking News
North Korea-linked APT Citrine Sleet exploit Chrome zero-day to deliver FudModule rootkit
Pierluigi Paganini August 31, 2024

North Korea-linked APT exploited the recently patched Google Chrome zero-day CVE-2024-7971 to deploy the FudModule rootkit. North Korea-linked group Citrine Sleet (aka AppleJeus, Labyrinth Ch ...

top articles

Nation-State hackers exploit Libraesva Email Gateway flaw
September 24, 2025
Cloudflare mitigates largest-ever DDoS attack at 22.2 Tbps
September 24, 2025
Google warns of Brickstorm backdoor targeting U.S. legal and tech sectors
September 26, 2025
Despite Russian influence, Moldova votes Pro-EU, highlighting future election risks
September 29, 2025

newsletter

Subscribe to my email list and stay
up-to-date!

most popular

VIEW ALL
Uncategorized

Broadcom patches VMware Zero-Day actively exploited by UNC5174

September 30, 2025

Cyber Crime
UK convicts Chinese national in £5.5B crypto fraud, marks world’s largest Bitcoin seizure

September 30, 2025

Security
U.S. CISA adds Adminer, Cisco IOS, Fortra GoAnywhere MFT, Libraesva ESG, and Sudo flaws to its Known Exploited Vulnerabilities catalog

September 30, 2025

Security
Asahi halts ordering, shipping, and customer service after cyberattack

September 30, 2025

Cyber Crime
Scattered Spider, ShinyHunters Restructure - New Attacks Underway 

September 30, 2025

recent articles

Uncategorized
Broadcom patches VMware Zero-Day actively exploited by UNC5174

Broadcom patched six VMware flaws, including CVE-2025-41244, which has been exploited in the wild as a zero-day since mid-October 2024 by UNC5174 Broadcom addressed six VMware vulnerabilities, inc ...

Pierluigi Paganini September 30, 2025
Cyber Crime
UK convicts Chinese national in £5.5B crypto fraud, marks world’s largest Bitcoin seizure

A Chinese national was convicted in the UK for crypto fraud as police seized £5.5B (61,000 Bitcoin), the world’s largest cryptocurrency seizure. UK authorities raided the London home of Chinese ...

Pierluigi Paganini September 30, 2025
Security
U.S. CISA adds Adminer, Cisco IOS, Fortra GoAnywhere MFT, Libraesva ESG, and Sudo flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Adminer, Cisco IOS, Fortra GoAnywhere MFT, Libraesva ESG, and Sudo flaws to its Known Exploited Vulnerabilities catalog. The U.S. ...

Pierluigi Paganini September 30, 2025
Security
Asahi halts ordering, shipping, and customer service after cyberattack

Japan’s top brewer Asahi suspends operations after a cyberattack, halting ordering, shipping, and customer service activities. Asahi Group Holdings, Ltd (commonly called Asahi) is Japan’s larg ...

Pierluigi Paganini September 30, 2025
Cyber Crime
Scattered Spider, ShinyHunters Restructure - New Attacks Underway 

Resecurity warns the “Trinity of Chaos” (LAPSUS$, ShinyHunters, Scattered Spider) is driving a global cybercrime wave, with major breaches undisclosed. A new Resecurity report has uncovered a ...

Pierluigi Paganini September 30, 2025
Security
UK grants £1.5B loan to Jaguar Land Rover after cyberattack

UK grants Jaguar Land Rover a £1.5B loan guarantee after a major cyberattack, though cybersecurity experts voice concerns about the government’s support plan. The UK government has announced a ...

Pierluigi Paganini September 29, 2025
Data Breach
Harrods alerts customers to new data breach linked to third-party provider

British Department Store Harrods warns customers of a data breach via a third-party provider, exposing some names and contact details. Harrods, the luxury British department store, warned custome ...

Pierluigi Paganini September 29, 2025
Cyber Crime
Akira Ransomware bypasses MFA on SonicWall VPNs

Akira ransomware is targeting SonicWall SSL VPNs, bypassing OTP MFA on accounts, likely using stolen OTP seeds. Since July 2025, Akira ransomware has exploited SonicWall SSL VPNs, likely using cre ...

Pierluigi Paganini September 29, 2025
Uncategorized
Despite Russian influence, Moldova votes Pro-EU, highlighting future election risks

Moldova ’s deputy PM blames Russia for an election cyberattack, calling it part of a planned hybrid campaign to destabilize democracy. Moldova Deputy Prime Minister Doina Nistor blamed Russia fo ...

Pierluigi Paganini September 29, 2025
Intelligence
Dutch teens arrested for spying on behalf of pro-Russian hackers

Dutch police arrested two 17-year-olds for spying for pro-Russian hackers; one jailed, the other placed on home bail. Dutch police arrested two 17-year-olds suspected of spying for pro-Russian hac ...

Pierluigi Paganini September 29, 2025
Security
Cyberattack on Co-op leaves shelves empty, data stolen, and $275M in lost revenue

The cyberattack on UK retailer Co-op in April caused empty shelves, customer data theft, and a $275M revenue loss. In May, the cybercrime group behind the April Co-op cyberattack, who go online wi ...

Pierluigi Paganini September 28, 2025
Malware
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 64

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Brewing Trouble — Dissecting a macOS M ...

Pierluigi Paganini September 28, 2025
Breaking News
Security Affairs newsletter Round 543 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly Security ...

Pierluigi Paganini September 28, 2025
Cyber Crime
Ohio’s Union County suffers ransomware attack impacting 45,000 people

A ransomware attack resulted in the theft of Social Security and financial data from Union County, Ohio, impacting 45,487 people. A ransomware attack hit Union County, Ohio, and crooks stole Socia ...

Pierluigi Paganini September 27, 2025
Hacking
ForcedLeak flaw in Salesforce Agentforce exposes CRM data via Prompt Injection

Researchers disclosed a critical flaw, named ForcedLeak, in Salesforce Agentforce that enables indirect prompt injection, risking CRM data exposure. Noma Labs researchers discovered a critical vul ...

Pierluigi Paganini September 27, 2025
Malware
Microsoft uncovers new variant of XCSSET macOS malware in targeted attacks

Microsoft Threat Intelligence researchers found a new XCSSET macOS malware variant used in limited attacks. Microsoft Threat Intelligence researchers have discovered a new version of the macOS mal ...

Pierluigi Paganini September 26, 2025
Hacking
Hackers exploit Fortra GoAnywhere flaw before public alert

watchTowr Labs says hackers exploited the Fortra GoAnywhere MFT flaw CVE-2025-10035 on Sept 10, 2025, a week before public disclosure. Cybersecurity firm watchTowr Labs revealed that it has 'credi ...

Pierluigi Paganini September 26, 2025
Hacking
UK NCSC warns that attackers exploited Cisco firewall zero-days to deploy RayInitiator and LINE VIPER malware

UK NCSC warns that threat actors exploited Cisco firewall zero-days to deploy new malware strains RayInitiator and LINE VIPER. The U.K. NCSC reported that threat actors exploited recently disclose ...

Pierluigi Paganini September 26, 2025
Malware
Google warns of Brickstorm backdoor targeting U.S. legal and tech sectors

China-linked actors used Brickstorm malware to spy on U.S. tech and legal firms, stealing data undetected for over a year, Google warns. Google Threat Intelligence Group (GTIG) observed the use o ...

Pierluigi Paganini September 26, 2025
Hacking
U.S. CISA adds CISCO Secure Firewall ASA and Secure FTD flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds CISCO Secure Firewall ASA and Secure FTD flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastr ...

Pierluigi Paganini September 25, 2025