MUST READ

Attackers exploit FortiGate devices to access sensitive network information

 | 

APT28 conducts long-term espionage on Ukrainian forces using custom malware

 | 

Threat actors use custom AuraInspector to harvest data from Salesforce systems

 | 

U.S. CISA adds Ivanti EPM, SolarWinds, and Omnissa Workspace One flaws to its Known Exploited Vulnerabilities catalog

 | 

Ericsson US confirms breach after third-party provider attack

 | 

Law enforcement disrupted Tycoon 2FA phishing-as-a-service platform

 | 

FBI alert: scammers target zoning permit applicants

 | 

Russia-linked hackers target Signal, WhatsApp of officials globally

 | 

Cognizant’s TriZetto Provider Solutions data breach impacted over 3.4 million patients

 | 

Anthropic Claude Opus AI model discovers 22 Firefox bugs

 | 

Critical Nginx UI flaw CVE-2026-27944 exposes server backups

 | 

Massive GitHub malware operation spreads BoryptGrab stealer

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 87

 | 

Security Affairs newsletter Round 566 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

FBI probing intrusion into a system managing sensitive surveillance information

 | 

Iran-linked hackers target IP cameras across Israel and Gulf states for military intelligence

 | 

Iran-linked MuddyWater deploys Dindoor malware against U.S. organizations

 | 

Cisco flags ongoing exploitation of two recently patched Catalyst SD-WAN flaws

 | 

Microsoft warns of ClickFix campaign exploiting Windows Terminal to deliver Lumma Stealer

 | 

Iran-nexus APT Dust Specter targets Iraq officials with new malware

 | 

Dell RecoverPoint

Pierluigi Paganini February 19, 2026
U.S. CISA adds Dell RecoverPoint and GitLab flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Dell RecoverPoint and GitLab flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Dell RecoverPoint and GitLab flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: The first vulnerability added to the catalog is […]

Pierluigi Paganini February 18, 2026
China-linked APT weaponized Dell RecoverPoint zero-day since 2024

A suspected Chinese state-linked group exploited a critical Dell RecoverPoint flaw (CVE-2026-22769) in zero-day attacks starting mid-2024. Mandiant and Google’s Threat Intelligence Group (GTIG) reported that a suspected China-linked APT group quietly exploited a critical zero-day flaw in Dell RecoverPoint for Virtual Machines starting in mid-2024. “Mandiant and Google Threat Intelligence Group (GTIG) have identified […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Attackers exploit FortiGate devices to access sensitive network information

Security / March 10, 2026

APT28 conducts long-term espionage on Ukrainian forces using custom malware

APT / March 10, 2026

Threat actors use custom AuraInspector to harvest data from Salesforce systems

Security / March 10, 2026

U.S. CISA adds Ivanti EPM, SolarWinds, and Omnissa Workspace One flaws to its Known Exploited Vulnerabilities catalog

Security / March 10, 2026

Ericsson US confirms breach after third-party provider attack

Data Breach / March 10, 2026