MUST READ

SmartLoader hackers clone Oura MCP project to spread StealC malware

 | 

Polish cybercrime Police arrest man linked to Phobos ransomware operation

 | 

Poorly crafted phishing campaign leverages bogus security incident report

 | 

South Korea slaps $25M fine on Dior, Louis Vuitton, Tiffany over Salesforce breach

 | 

Encrypted RCS messaging support lands in Apple’s iOS 26.4 developer build

 | 

Hackers steal OpenClaw configuration in emerging AI agent threat

 | 

Hackers sell stolen Eurail traveler information on dark web

 | 

A security flaw at DavaIndia Pharmacy allowed attackers to access customers' data and more

 | 

Microsoft alerts on DNS-based ClickFix variant delivering malware via nslookup

 | 

Google fixes first actively exploited Chrome zero-day of 2026

 | 

Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 84

 | 

Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Fintech firm Figure disclosed data breach after employee phishing attack

 | 

U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog

 | 

Suspected Russian hackers deploy CANFAIL malware against Ukraine

 | 

New threat actor UAT-9921 deploys VoidLink against enterprise sectors

 | 

Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release

 | 

Google: state-backed hackers exploit Gemini AI for cyber recon and attacks

 | 

U.S. CISA adds SolarWinds Web Help Desk, Notepad++, Microsoft Configuration Manager, and Apple devices flaws to its Known Exploited Vulnerabilities catalog

 | 

Cybercrime

Pierluigi Paganini July 10, 2014
The Internet of Things and Cybercrime – what risks?

Analysis of the compliance measures to be put in place in order to face data protection issues affecting the Internet of Things. The Internet of Things is expected to lead to 50 billion connected devices by 2020 collecting and exchanging personal data about their users, their lives, their preferences and tastes.  This will lead not […]

Pierluigi Paganini July 10, 2014
Facebook dismantled Lecpetex botnet which infected 250,000 Computers

Facebook in a joint operation with the Greek Cyber Crime Division dismantled the Lecpetex botnet, which infected 250,000 Computers in different countries. Facebook has announced to have successfully conducted the takeover of the Lecpetex botnet  in Greece. The bad actors operating in Greece were using the popular social media platform for illicit activities, including data stealing, malware distribution […]

Pierluigi Paganini July 07, 2014
Cisco warns on combined spear phishing and exploit attacks

Cisco’s Threat Research Analysis and Communications (TRAC) uncovered an extremely targeted spear phish attack on high-profit companies in Europe. A new APT has been discovered by CISCO targeting high-profit companies in Europe, including businesses working in banking, oil and entertainment industries. The attackers adopted as attack vector the email in a spear phishing campaign. According to the alert […]

Pierluigi Paganini July 06, 2014
APWG report shows the increase of phishing activities in Q1 2014

The APWG Report on Phishing Activity Trends analyzes phishing attacks observed by its member companies and reported to the APWG group. According to the APWG Phishing Activity Trends Report for the first quarter of 2014, the phishing activities have increased in the first months of the year. According to the APWG report, the number of malicious websites used for the […]

Pierluigi Paganini July 05, 2014
Massive Boleto fraud in Brazil caused 3,75 USD billion losses

RSA Security has discovered a large-scale malware campaign, which hijacked Boleto payments causing an amount of financial losses for 3,75 USD billion losses. Security experts at RSA Security have recently discovered a large-scale malware campaign that’s been operating at least for two years, the malicious code implements the man-in-the-browser technique to exploit vulnerabilities in popular browsers, including Chrome, Firefox […]

Pierluigi Paganini July 03, 2014
Geodo, the banking trojan with email self-spreading feature

Security researchers from Seculert firm have discovered a variant of the Cridex banking worm, dubbed Geodo, which spreads itself through email. In the last months a significant number of banking trojans have been proposed by cyber criminal ecosystem, from EMOTET to Dyreza, criminals have used a wide casuistry of techniques to deceive bank customers. The primary purpose of the […]

Pierluigi Paganini July 01, 2014
Microsoft Seized No-IP Domains, Millions dynamic DNS users affected

Executing an order of a Nevada Court, Microsoft has seized domains belonging to the No-IP.com Dynamic DNS Service affecting the traffic of million users. Microsoft has executed a large-scale operation against a malware network thought to be responsible for more than 7.4 million infections of Windows machines worldwide. The operation conducted by Microsoft has brought down millions of […]

Pierluigi Paganini June 29, 2014
Why the agreement between ENISA and EUROPOL is strategic?

ENISA and Europol have signed an agreement with the intent to facilitate the cooperation in the fight to the cyber criminal activities. The fight to the cybercrime needs a joint effort of governments, law enforcement agencies and private entities. Cyber threats are becoming even more sophisticated and bad actors behind them are structured in efficient organizations difficult […]

Pierluigi Paganini June 29, 2014
Selfmite, the rare Android worm which spreads itself by sending SMS

Experts at AdaptiveMobile discovered a rare Android SMS worm dubbed Selfmite which spreads itself by sending SMS including a malicious link to the contact list. Security researchers at AdaptiveMobile have discovered a rare Android malware dubbed Selfmite that propagates via SMS text messages, the worm in fact sends malicious links to 20 contacts present in the device owner’s address book. Selfmite […]

Pierluigi Paganini June 28, 2014
EMOTET the banking malware which uses network sniffing

Security Experts at Trend Micro have detected a new banking malware, dubbed EMOTET, which uses also network sniffing capabilities to target bank customers. The number of malware families designed to hit the banking industry is in constant growth, in this first part of the year the number of malicious code used by cyber criminals for […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

SmartLoader hackers clone Oura MCP project to spread StealC malware

Artificial Intelligence / February 17, 2026

Polish cybercrime Police arrest man linked to Phobos ransomware operation

Cyber Crime / February 17, 2026

Poorly crafted phishing campaign leverages bogus security incident report

Security / February 17, 2026

South Korea slaps $25M fine on Dior, Louis Vuitton, Tiffany over Salesforce breach

Hacking / February 17, 2026

Encrypted RCS messaging support lands in Apple’s iOS 26.4 developer build

Security / February 17, 2026