MUST READ

Resecurity Supports Microsoft DCU in Disrupting Fox Tempest ’s Cybercriminal Code-Signing Ecosystem

 | 

U.S. CISA adds Daemon Tools, TanStack, and Nx Console flaws to its Known Exploited Vulnerabilities catalog

 | 

A Fake UK Visa Site Left 100,000 Passports Wide Open

 | 

U.S. CISA adds LiteSpeed cPanel Plugin flaw to its Known Exploited Vulnerabilities catalog

 | 

19.6 Billion Files Are Sitting Open on the Internet. No Password Required

 | 

Romanian Hacker Gets Nearly 5 Years in US Prison Over Network Intrusion

 | 

The LA Metro Attack Wasn't Hacktivism. It Was a State Operation With a Costume On.

 | 

How cybersecurity firms took down Glassworm botnet in one shot

 | 

Dutch Government just said no to an American firm buying the keys to their digital State

 | 

Microsoft SharePoint Has a New RCE Flaw. If You Haven't Patched Yet, Go Do That.

 | 

The Hidden Ransomware Economy Running on Exposed Databases

 | 

Malware Found in Laravel-Lang Composer Packages After Git Tag Poisoning Attack

 | 

Nimbus Manticore Expanded Attacks With AI-Assisted Malware and Fake Zoom Installers

 | 

Lazarus APT unveils fileless remote access Trojan designed to evade detection

 | 

Third-Party Cyberattack Impacts Patient Information at The Oncology Institute

 | 

Ghost CMS flaw abused to push ClickFix attacks on hundreds of sites

 | 

340 Million OnlyFans Profiles Allegedly Rebuilt from Leaks

 | 

Zero-Click WhatsApp Account Takeover Hits iPhone Users Running iOS 16. No Linked Devices, No Warning

 | 

Dutch authorities dismantle hosting network allegedly used for cyberattacks and disinformation

 | 

FBI director Kash Patel’s brand website taken offline after malware reports

 | 

LATEST NEWS

VIEW ALL
Data Breach
DoorDash data breach exposes personal info after social engineering attack
Pierluigi Paganini November 18, 2025

DoorDash says a social engineering attack led to a data breach exposing names, addresses, emails, and phone numbers of users, Dashers, and merchants. U.S.-based food delivery and logistics company ...

Hacking
Google fixed the seventh Chrome zero-day in 2025
Pierluigi Paganini November 18, 2025

Google patched two Chrome flaws, including a V8 type-confusion bug, tracked as including CVE-2025-13223, which was exploited in the wild. Google released Chrome security updates to address two fla ...

Cyber Crime
Dutch police takes down bulletproof hosting hub linked to 80+ cybercrime cases
Pierluigi Paganini November 18, 2025

Dutch police seized 250 servers running a bulletproof hosting service tied to cybercriminals and linked to over 80 investigations since 2022. Dutch police Politie, seized 250 servers running an un ...

Breaking News
Microsoft mitigated the largest cloud DDoS ever recorded, 15.7 Tbps
Pierluigi Paganini November 17, 2025

Microsoft says the Aisuru botnet launched a 15.7 Tbps DDoS on Azure from 500k IPs, using massive UDP floods peaking at 3.6 B pps. On October 24, 2025, Azure DDoS Protection detected and mitigated ...

top articles

Hackers access Booking.com user data, company secures systems
April 13, 2026
Inside ZionSiphon: politically driven malware aims at Israeli water systems
April 17, 2026
RAMP Uncovered: Anatomy of Russia’s Ransomware Marketplace
April 23, 2026
Checkmarx supply chain attack impacts Bitwarden npm distribution path
April 24, 2026
Critical CrowdStrike LogScale bug could have allowed file access, but no exploitation was observed
April 26, 2026

newsletter

Subscribe to my email list and stay
up-to-date!

most popular

VIEW ALL
Security

Resecurity Supports Microsoft DCU in Disrupting Fox Tempest ’s Cybercriminal Code-Signing Ecosystem

May 28, 2026

Security
U.S. CISA adds Daemon Tools, TanStack, and Nx Console flaws to its Known Exploited Vulnerabilities catalog

May 28, 2026

Security
A Fake UK Visa Site Left 100,000 Passports Wide Open

May 28, 2026

Hacking
U.S. CISA adds LiteSpeed cPanel Plugin flaw to its Known Exploited Vulnerabilities catalog

May 28, 2026

Security
19.6 Billion Files Are Sitting Open on the Internet. No Password Required

May 28, 2026

recent articles

Security
Resecurity Supports Microsoft DCU in Disrupting Fox Tempest ’s Cybercriminal Code-Signing Ecosystem

Microsoft and Resecurity disrupted Fox Tempest, a malware-signing service that used fake Microsoft certificates to make malware look legitimate. Resecurity supported Microsoft’s Digital Crimes U ...

Pierluigi Paganini May 28, 2026
Security
U.S. CISA adds Daemon Tools, TanStack, and Nx Console flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Daemon Tools, TanStack, and Nx Console flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastru ...

Pierluigi Paganini May 28, 2026
Security
A Fake UK Visa Site Left 100,000 Passports Wide Open

A third-party UK visa site exposed passports and selfies on a public AWS server. It’s not official GOV.UK and affected at least 100,000 documents. UK Visa Portal is not run by the British govern ...

Pierluigi Paganini May 28, 2026
Hacking
U.S. CISA adds LiteSpeed cPanel Plugin flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds LiteSpeed cPanel Plugin flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Ag ...

Pierluigi Paganini May 28, 2026
Security
19.6 Billion Files Are Sitting Open on the Internet. No Password Required

19.6 Billion files are exposed in misconfigured cloud buckets, including 685K credential files and nearly 1M database dumps. There's a comfortable myth most people carry around: that the data they ...

Pierluigi Paganini May 28, 2026
Cyber Crime
Romanian Hacker Gets Nearly 5 Years in US Prison Over Network Intrusion

Romanian hacker Catalin Dragomir (45) got 4 years and 8 months in prison for selling access to an Oregon state network. Romanian hacker Catalin Dragomir (45) will spend 4 years and 8 months in a U ...

Pierluigi Paganini May 27, 2026
Hacktivism
The LA Metro Attack Wasn't Hacktivism. It Was a State Operation With a Costume On.

Iran's "hacktivist" group Ababil of Minab, which hit LA Metro and wiped terabytes of data, is forensically linked to Iran's intelligence service MOIS. In late March, a group calling itself Ababil ...

Pierluigi Paganini May 27, 2026
Cyber Crime
How cybersecurity firms took down Glassworm botnet in one shot

Glassworm infected developers through poisoned tools and packages until a coordinated takedown killed all four of its C2 channels at once. On May 26, 2026, at 14:00 UTC, CrowdStrike Counter Advers ...

Pierluigi Paganini May 27, 2026
Security
Dutch Government just said no to an American firm buying the keys to their digital State

The Dutch government blocked Kyndryl’s €100M bid for Solvinity, citing national security concerns over critical digital infrastructure. Dutch Government told Kyndryl it can't buy Solvinity. Th ...

Pierluigi Paganini May 27, 2026
Security
Microsoft SharePoint Has a New RCE Flaw. If You Haven't Patched Yet, Go Do That.

A critical vulnerability, tracked as CVE-2026-45659, in Microsoft SharePoint can allow attackers to achieve remote code execution with little effort. Microsoft released security updates to patch a ...

Pierluigi Paganini May 27, 2026
Cyber Crime
The Hidden Ransomware Economy Running on Exposed Databases

A 5-year study on the Ransomware Economy found that 30,515 exposed databases were hit by ransom attacks, causing massive damage despite victims never paying. Database extortion doesn’t look like ...

Pierluigi Paganini May 26, 2026
Security
Malware Found in Laravel-Lang Composer Packages After Git Tag Poisoning Attack

Attackers have poisoned four Laravel-Lang Composer packages by rewriting hundreds of Git tags, putting many Laravel apps at risk. Hackers compromised four popular Laravel-Lang Composer packages an ...

Pierluigi Paganini May 26, 2026
APT
Nimbus Manticore Expanded Attacks With AI-Assisted Malware and Fake Zoom Installers

Nimbus Manticore accelerated cyberattacks during wartime, using AI-assisted malware, fake Zoom installers, and SEO poisoning. When the United States launched Operation Epic Fury against Iran at th ...

Pierluigi Paganini May 26, 2026
APT
Lazarus APT unveils fileless remote access Trojan designed to evade detection

North Korea-linked Lazarus APT Group is using a stealthy memory-only RAT that leaves almost no forensic traces behind. North Korea-linked APT group Lazarus has never been shy about its ambitions, ...

Pierluigi Paganini May 26, 2026
Data Breach
Third-Party Cyberattack Impacts Patient Information at The Oncology Institute

The Oncology Institute disclosed a data breach tied to a third-party vendor, potentially exposing patient information after a 2025 cyberattack. The Oncology Institute has confirmed that patient in ...

Pierluigi Paganini May 26, 2026
Cyber Crime
Ghost CMS flaw abused to push ClickFix attacks on hundreds of sites

Attackers are exploiting the patched Ghost CMS flaw CVE-2026-26980, compromising over 700 unpatched sites, including universities. Threat actors are actively exploiting a security flaw, tracked as ...

Pierluigi Paganini May 25, 2026
Cyber Crime
340 Million OnlyFans Profiles Allegedly Rebuilt from Leaks

A hacker is selling a 340M-strong OnlyFans-linked dataset built by correlating old breaches and public data, not by hacking OnlyFans directly. A threat actor is adverertising a purported database ...

Pierluigi Paganini May 25, 2026
Security
Zero-Click WhatsApp Account Takeover Hits iPhone Users Running iOS 16. No Linked Devices, No Warning

A zero-click attack targeting iPhones on iOS 16 hijacked WhatsApp accounts without linked devices, warnings, or user interaction. There is a particular kind of security incident that is harder to ...

Pierluigi Paganini May 25, 2026
Intelligence
Dutch authorities dismantle hosting network allegedly used for cyberattacks and disinformation

Dutch authorities arrested two suspects and seized 800 servers tied to Stark Industries, a hosting firm linked to cyberattacks and disinformation. Dutch financial crime investigators arrested two ...

Pierluigi Paganini May 25, 2026
Security
FBI director Kash Patel’s brand website taken offline after malware reports

FBI director site went offline after a hack used a fake Cloudflare page to trick users into running a ClickFix attack that installed malware. The merchandise website of FBI director Kash Patel (ba ...

Pierluigi Paganini May 25, 2026