MUST READ

Quest KACE SMA flaw CVE-2025-32975: when one unpatched tool opens the door to 60 organizations

 | 

Instructure settles with hackers following massive student data theft

 | 

Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator

 | 

Hackers accessed BWH Hotels reservation system for months

 | 

The world's most "Dangerous" AI, Anthropic’s Mythos, found only one flaw in curl

 | 

Attackers exploit cPanel CVE-2026-41940 to deploy Filemanager Backdoor

 | 

WannaCry, the ransomware attack that changed the history of cybersecurity

 | 

Android banking Trojan TrickMo evolves using TON network for C2

 | 

Identity security firm SailPoint discloses GitHub repository breach

 | 

Google warns artificial intelligence is accelerating cyberattacks and zero-day exploits

 | 

Crimenetwork returns after takedown, dismantled again by German authorities

 | 

U.S. CISA adds a flaw in BerriAI LiteLLM to its Known Exploited Vulnerabilities catalog

 | 

Instagram removed end-to-end encryption for DMs. What should users do?

 | 

New cPanel vulnerabilities could allow file access and remote code execution

 | 

Official JDownloader site served malware to Windows and Linux users between May 6 and May 7

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 96

 | 

Quasar Linux RAT (QLNX): A Fileless Linux Implant Built for Stealth and Persistence

 | 

Braintrust security incident raises concerns over AI supply chain risks

 | 

RansomHouse says it breached Trellix and exposes internal systems

 | 

Cyberattacks on Poland's Water Plants: A Blueprint for Hybrid Warfare

 | 

CVE-2026-0300

Pierluigi Paganini May 07, 2026
Nation-state actors exploit Palo Alto PAN-OS zero-day for weeks

Palo Alto says hackers exploited PAN-OS zero-day CVE-2026-0300 for weeks, gaining root access to exposed firewalls and hiding traces. Palo Alto Networks warned that suspected state-sponsored hackers have been exploiting the critical PAN-OS zero-day CVE-2026-0300 for nearly a month. After exploiting the flaw, attackers deployed tunneling tools such as EarthWorm and ReverseSocks5, used stolen credentials […]

Pierluigi Paganini May 06, 2026
Palo Alto Networks PAN-OS flaw exploited for remote code execution

Palo Alto Networks warns of a critical PAN-OS flaw (CVE-2026-0300) that is under active attack, allowing unauthenticated remote code execution. Palo Alto Networks has warned that a critical PAN-OS vulnerability, tracked as CVE-2026-0300 (CVSS score of 9.3), is actively exploited in the wild. The flaw is a buffer overflow that allows unauthenticated remote code execution, […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Quest KACE SMA flaw CVE-2025-32975: when one unpatched tool opens the door to 60 organizations

Security / May 13, 2026

Instructure settles with hackers following massive student data theft

Cyber Crime / May 13, 2026

Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator

Security / May 13, 2026

Hackers accessed BWH Hotels reservation system for months

Data Breach / May 12, 2026

The world's most "Dangerous" AI, Anthropic’s Mythos, found only one flaw in curl

Hacking / May 12, 2026