MUST READ

FBI alert: scammers target zoning permit applicants

 | 

Russia-linked hackers target Signal, WhatsApp of officials globally

 | 

Cognizant’s TriZetto Provider Solutions data breach impacted over 3.4 million patients

 | 

Anthropic Claude Opus AI model discovers 22 Firefox bugs

 | 

Critical Nginx UI flaw CVE-2026-27944 exposes server backups

 | 

Massive GitHub malware operation spreads BoryptGrab stealer

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 87

 | 

Security Affairs newsletter Round 566 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

FBI probing intrusion into a system managing sensitive surveillance information

 | 

Iran-linked hackers target IP cameras across Israel and Gulf states for military intelligence

 | 

Iran-linked MuddyWater deploys Dindoor malware against U.S. organizations

 | 

Cisco flags ongoing exploitation of two recently patched Catalyst SD-WAN flaws

 | 

Microsoft warns of ClickFix campaign exploiting Windows Terminal to deliver Lumma Stealer

 | 

Iran-nexus APT Dust Specter targets Iraq officials with new malware

 | 

U.S. CISA adds Apple, Rockwell, and Hikvision  flaws to its Known Exploited Vulnerabilities catalog

 | 

Google GTIG: 90 zero-day flaws exploited in 2025 as enterprise targets grow

 | 

Phobos Ransomware admin faces up to 20 years after guilty plea

 | 

Russian APT targets Ukraine with BadPaw and MeowMeow malware

 | 

Operation Leak: FBI and Europol dismantle LeakBase Cybercrime forum

 | 

Google uncovers Coruna iOS Exploit Kit targeting iOS 13–17.2.1

 | 

CVE-2026-27944

Pierluigi Paganini March 08, 2026
Critical Nginx UI flaw CVE-2026-27944 exposes server backups

Nginx UI flaw CVE-2026-27944 lets attackers download and decrypt server backups without authentication, exposing sensitive data on public management interfaces. A critical vulnerability in Nginx UI, tracked as CVE-2026-27944 (CVSS score of 9.8), allows attackers to download and decrypt full server backups without authentication. The flaw poses a serious risk to organizations exposing the management […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

FBI alert: scammers target zoning permit applicants

Cyber Crime / March 09, 2026

Russia-linked hackers target Signal, WhatsApp of officials globally

Intelligence / March 09, 2026

Cognizant’s TriZetto Provider Solutions data breach impacted over 3.4 million patients

Data Breach / March 09, 2026

Anthropic Claude Opus AI model discovers 22 Firefox bugs

Artificial Intelligence / March 09, 2026

Critical Nginx UI flaw CVE-2026-27944 exposes server backups

Security / March 08, 2026