MUST READ

Meta Accuses NSO of Violating WhatsApp Court Injunction

 | 

Everest Forms Pro WordPress Flaw is Handing Attackers Admin Access

 | 

UNC3753 Escalates: From Vishing Calls to Physical Office Intrusions at US Legal and Financial Firms

 | 

Meta AI Recovery Tool Flaw Exposed 20,000+ Instagram Accounts

 | 

IoT Botnet C0XMO Adds Competitor-Killing Capability

 | 

DentaQuest Breach: ShinyHunters Publish Data Impacting 2.6M People

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 100

 | 

Security Affairs newsletter Round 580 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

U.S. CISA adds SolarWinds Serv-U flaw to its Known Exploited Vulnerabilities catalog

 | 

Report: Anthropic Deploys Engineers to Support NSA Use of Mythos

 | 

Claude Opus Found a Four-Year-Old Hole in Zcash's Privacy Layer. Nobody Knows If Someone Already Used It.

 | 

Silent Ransom Group (SRG): Switching To DNS Fast Flux Infrastructure

 | 

Cisco SD-WAN Has a New Root-Level Problem, and There's No Fix Yet

 | 

PCPJack Exposed: Researchers Uncover 230-Node Cloud Email Relay Network

 | 

Fake Context Alignment: The Attack That Made Gemini Obey Strangers Through Your Notifications

 | 

U.S. CISA adds Mirasvit Full Page Cache Warmer flaw to its Known Exploited Vulnerabilities catalog

 | 

Critical Cisco Unified CM Bug Patched as Public Exploit Code Emerges

 | 

Gamaredon Uses WinRAR Vulnerability to Launch Modular Spy Campaign on Ukrainian Targets

 | 

Researcher Drops a New VS Code Zero-Day After Losing Trust in Microsoft's Disclosure Process

 | 

29 Arrests, Nine Crime Groups Dismantled: Another Blow to Illegal Streaming

 | 

Artificial Intelligence

Pierluigi Paganini June 06, 2026
Report: Anthropic Deploys Engineers to Support NSA Use of Mythos

Reports claim Anthropic engineers are helping the NSA use its restricted AI model Mythos, known for advanced cybersecurity capabilities. This week, the Financial Times reported that Anthropic has placed approximately six “forward-deployed” engineers inside the National Security Agency to help the intelligence agency use Mythos, its most capable cyber model, for offensive operations. Two people […]

Pierluigi Paganini June 05, 2026
Fake Context Alignment: The Attack That Made Gemini Obey Strangers Through Your Notifications

SafeBreach tricked Gemini into obeying attackers via WhatsApp notifications, using hidden foreign-language text to bypass Google’s defenses and control smart home devices. SafeBreach Labs researcher Or Yair spent months trying to break Google’s Gemini voice assistant after Google patched the vulnerabilities he found in his previous research. The new attack class he developed, named Fake […]

Pierluigi Paganini May 29, 2026
Meet GREYVIBE, the Russia-Linked Hacking Group Using AI to Target Ukraine and Still Making Rookie Mistakes

GREYVIBE, a Russia-linked group active since 2025, targets Ukraine with AI-assisted malware and five attack chains. Researchers say it’s part spy op, part crime gang. Security firm WithSecure has been tracking a previously unknown Russian-linked APT group called GREYVIBE since at least August 2025. The group targets Ukraine and Ukrainian-related organizations across military, government, civilian, […]

Pierluigi Paganini May 24, 2026
Anthropic’s Project Glasswing: 10,000+ Vulnerabilities Found in One Month, and the Patching Problem Has Never Been More Obvious

Anthropic said its AI Project Glasswing found over 10,000 serious vulnerabilities in one month, exposing a growing patching gap. Anthropic announced on Friday that Project Glasswing, its defensive cybersecurity initiative built around Claude Mythos Preview, has uncovered more than 10,000 high- or critical-severity vulnerabilities in the month since the program went live. The number is […]

Pierluigi Paganini May 11, 2026
Google warns artificial intelligence is accelerating cyberattacks and zero-day exploits

Google says hackers now use AI to create exploits, automate attacks, evade defenses, and target AI supply chains at scale. Artificial intelligence is rapidly changing the cyber threat landscape, and a new report from the Google Cloud Threat Intelligence team highlights how attackers already use AI to improve vulnerability exploitation and gain initial access to […]

Pierluigi Paganini May 08, 2026
AI, Cyberwarfare, and Autonomous Weapons: Inside America’s New Military Strategy

The Pentagon is integrating AI into military operations, transforming cybersecurity, targeting, and command systems into a unified warfare architecture. May 2026 marks a turning point in the evolution of modern warfare: the convergence of artificial intelligence, cybersecurity, and conventional military power is no longer theoretical. It is becoming an operational reality. The Pentagon has signed […]

Pierluigi Paganini May 03, 2026
Google Revamps Bug Bounty Programs: Android Rewards Rise, Chrome Payouts Drop in the Age of AI

Google revamps bug bounties: Android rewards rise to $1.5M, Chrome payouts drop, shifting focus to high-impact, AI-resistant vulnerabilities. Google has announced a major overhaul of its Vulnerability Reward Programs (VRP) for Android and Chrome, marking a strategic shift in how the company approaches cybersecurity. The update comes as artificial intelligence tools are reshaping the field […]

Pierluigi Paganini March 13, 2026
AI-assisted Slopoly malware powers Hive0163’s ransomware campaigns

The Hive0163 group used AI-assisted malware called Slopoly to maintain persistent access in ransomware attacks. IBM X-Force researchers report that the financially motivated group Hive0163 is using AI-assisted malware named Slopoly to maintain persistent access during ransomware attacks, showing how threat actors can quickly build new malware frameworks using AI. Hive0163 is a threat actor […]

Pierluigi Paganini March 01, 2026
Claude code abused to steal 150GB in cyberattack on Mexican agencies

Hackers abused Claude Code to build exploits and steal 150GB of data in a cyberattack targeting Mexican government systems. Hackers abused Anthropic’s Claude Code AI assistant to develop exploits, create custom tools, and automatically exfiltrate more than 150GB of data in an attack on Mexican government systems, the Israeli cybersecurity firm Gambit Security reports. The […]

Pierluigi Paganini February 27, 2026
How AI Aids Incident Response: Why Humans Alone Cannot Do IR Efficiently

AI accelerates incident response by correlating alerts and generating reports in minutes, helping teams scale beyond manual limits. Incident response has always been a race against the clock. It starts ticking the moment an alert is triggered, and each minute thereafter can lead to lost revenue, regulatory exposure, reputational damage, or customer churn. Traditionally, incident […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Meta Accuses NSO of Violating WhatsApp Court Injunction

Security / June 08, 2026

Everest Forms Pro WordPress Flaw is Handing Attackers Admin Access

Security / June 08, 2026

UNC3753 Escalates: From Vishing Calls to Physical Office Intrusions at US Legal and Financial Firms

Cyber Crime / June 08, 2026

Meta AI Recovery Tool Flaw Exposed 20,000+ Instagram Accounts

Artificial Intelligence / June 08, 2026

IoT Botnet C0XMO Adds Competitor-Killing Capability

Uncategorized / June 08, 2026