MUST READ

South Korea slaps $25M fine on Dior, Louis Vuitton, Tiffany over Salesforce breach

 | 

Encrypted RCS messaging support lands in Apple’s iOS 26.4 developer build

 | 

Hackers steal OpenClaw configuration in emerging AI agent threat

 | 

Hackers sell stolen Eurail traveler information on dark web

 | 

A security flaw at DavaIndia Pharmacy allowed attackers to access customers' data and more

 | 

Microsoft alerts on DNS-based ClickFix variant delivering malware via nslookup

 | 

Google fixes first actively exploited Chrome zero-day of 2026

 | 

Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 84

 | 

Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Fintech firm Figure disclosed data breach after employee phishing attack

 | 

U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog

 | 

Suspected Russian hackers deploy CANFAIL malware against Ukraine

 | 

New threat actor UAT-9921 deploys VoidLink against enterprise sectors

 | 

Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release

 | 

Google: state-backed hackers exploit Gemini AI for cyber recon and attacks

 | 

U.S. CISA adds SolarWinds Web Help Desk, Notepad++, Microsoft Configuration Manager, and Apple devices flaws to its Known Exploited Vulnerabilities catalog

 | 

Odido confirms massive breach; 6.2 Million customers impacted

 | 

ApolloMD data breach impacts 626,540 people

 | 

LummaStealer activity spikes post-law enforcement disruption

 | 

search

Date range
Filters

1195 results

Pierluigi Paganini December 14, 2017
Trump signed a bill prohibiting the use of Kaspersky Lab product and services

The US President Donald Trump signed a bill that bans the use of Kaspersky Lab products and services in federal agencies. Section 1634 of the bill prohibits the use of security software and services provided by security giant Kaspersky Lab, the ban will start from October 1, 2018. Below the details of the ban included in the section […]

Pierluigi Paganini December 13, 2017
ISIS & Al Qaeda: What’s Coming Down the Line for the U.S. in 2018

ISIS & Al Qaeda: What’s Coming Down the Line for the U.S. in 2018. From drones to chemical attacks, which are the major risks? Last month, the Department of Homeland Security (DHS) warned that, “our enemies remain focused on attacking the United States, and they are constantly adapting. DHS and its partners are stepping up […]

Pierluigi Paganini November 17, 2017
Oracle issues emergency patches for JOLTANDBLEED flaws

JoltandBleed – Oracle issued an emergency patch for vulnerabilities affecting several of its products that rely on the proprietary Jolt protocol. Oracle issued an emergency patch for vulnerabilities affecting several of its products that rely on the proprietary Jolt protocol. The vulnerabilities were reported by experts at ERPScan who named the set of five vulnerabilities JoltandBleed. The most critical flaw […]

Pierluigi Paganini November 12, 2017
Security Affairs newsletter Round 136 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Once again thank you! ·      Flaws in IEEE P1735 electronics standard expose intellectual property ·      Popular Anime crunchyroll.com hijacked to distribute a keylogger ·      Security Affairs newsletter Round 135 – News of the week ·      The NIC Asia Bank […]

Pierluigi Paganini November 09, 2017
Hack the hackers. Watch out the NEW IPCAM EXPLOIT, it is a scam!

Security experts have discovered a new hacking tool dubbed NEW IPCAM EXPLOIT containing a backdoor that is offered on several underground hacking forums. Wannabe hackers, be careful out of free hacking tools, many of them are scams. Recently security experts reported several cases of fake hacking tools hiding backdoors, for example, a fake Facebook hacking tool or the Cobian RAT. […]

Pierluigi Paganini November 07, 2017
German users exploit a Twitter bug to post 30,000-character tweet

Over the weekend, two German Twitter users successfully bypassed the existing character limit by exploiting a Twitter bug and sending a 30,396-character tweet. Two German Twitter users, Timrasett and HackneyYT, were able to bypass the 280-character limit by posting a 30,000-character Tweet. Unfortunately, the side effect was that the long tweet caused problems, with some users complaining of crashes. […]

Pierluigi Paganini November 03, 2017
FireEye announced the arrest of LeakTheAnalyst, the hacker who claimed to have breached its systems

FireEye CEO Kevin Mandia announced the arrest of LeakTheAnalyst, the hacker who claimed to have breached its systems back in July. Late July a hacker who goes online with the moniker LeakTheAnalyst claimed to have breached FireEye systems. The hacker leaked details alleged stolen from a compromised system maintained by Adi Peretz, a Senior Analyst at Mandiant. The hacker leaked a […]

Pierluigi Paganini October 27, 2017
Digging the Middle East and North African cybercrime underground market

Security experts from Trend Micro have published an interesting report on the Middle East and North African cybercrime underground market, enjoy it! We explained several times that criminal communities adopt different tactics, techniques, and procedures (TTPs) depending on the location they operate. Experts at Trend Micro have highlighted the differences between the different underground communities, they […]

Pierluigi Paganini October 15, 2017
Security Affairs newsletter Round 132 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Once again thank you! ·      Forrester, one of the most influential research and advisory firms was hacked ·      HPE allowed Russians review the code of ArcSight software also used by the Pentagon ·      Security Affairs newsletter Round […]

Pierluigi Paganini October 10, 2017
FormBook malware used in high-volume distribution campaigns targeting organizations in the US and South Korea

Crooks are spreading the FormBook malware to target aerospace firms, defense contractors and some manufacturing organizations in the US and South Korea. According to researchers at FireEye, FormBook was spotted in several high-volume distribution campaigns targeting aim at Aerospace, Defense Contractor, and Manufacturing industries. The phishing emails that targeted US entities contain PDF, DOC or […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

South Korea slaps $25M fine on Dior, Louis Vuitton, Tiffany over Salesforce breach

Hacking / February 17, 2026

Encrypted RCS messaging support lands in Apple’s iOS 26.4 developer build

Security / February 17, 2026

Hackers steal OpenClaw configuration in emerging AI agent threat

Malware / February 17, 2026

Hackers sell stolen Eurail traveler information on dark web

Data Breach / February 17, 2026

A security flaw at DavaIndia Pharmacy allowed attackers to access customers' data and more

Security / February 16, 2026