MUST READ

Russia-linked APT uses DRILLAPP backdoor to spy on Ukrainian targets

 | 

FBI launches inquiry into Steam games spreading malware

 | 

Former Germany’s foreign intelligence VP hit in Signal account takeover campaign

 | 

Advanced Protection Mode in Android 17 prevents apps from misusing Accessibility Services

 | 

Unprivileged users could exploit AppArmor bugs to gain root access

 | 

Payload Ransomware claims the hack of Royal Bahrain Hospital

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 88

 | 

Security Affairs newsletter Round 567 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Starbucks data breach impacts 889 employees

 | 

Storm-2561 lures victims to spoofed VPN sites to harvest corporate logins

 | 

Interpol - Operation Synergia III leads to 45,000 malicious IPs dismantled and 94 arrests worldwide

 | 

U.S. CISA adds Google Chrome flaws to its Known Exploited Vulnerabilities catalog

 | 

Hackers targeted Poland’s National Centre for Nuclear Research

 | 

US and European authorities disrupt socksEscort proxy service tied to AVrecon botnet

 | 

AI-assisted Slopoly malware powers Hive0163’s ransomware campaigns

 | 

Google fixed two new actively exploited flaws in the Chrome browser

 | 

Beyond File Servers: Securing Unstructured Data in the Era of AI

 | 

Apple issues emergency fixes for Coruna flaws in older iOS versions

 | 

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

 | 

ENISA Technical Advisory on Secure Package Managers: Essential DevSecOps Guidance

 | 

FortiGate

Pierluigi Paganini March 10, 2026
Attackers exploit FortiGate devices to access sensitive network information

Attackers are exploiting FortiGate devices to breach networks and steal configuration data containing service account credentials and network details. SentinelOne researchers warn that attackers are exploiting vulnerabilities or weak credentials in FortiGate devices to gain initial access to corporate networks. Once inside, they extract configuration files that may contain service account credentials and information about […]

Pierluigi Paganini February 23, 2026
AI-powered campaign compromises 600 FortiGate systems worldwide

A Russian-speaking cybercriminal used commercial generative AI tools to hack over 600 FortiGate devices across 55 countries. Amazon Threat Intelligence reports that a Russian-speaking, financially motivated threat actor used commercial generative AI services to compromise more than 600 FortiGate devices in 55 countries. The activity, observed between January 11 and February 18, 2026, highlights how […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Russia-linked APT uses DRILLAPP backdoor to spy on Ukrainian targets

Malware / March 16, 2026

FBI launches inquiry into Steam games spreading malware

Cyber Crime / March 16, 2026

Former Germany’s foreign intelligence VP hit in Signal account takeover campaign

Intelligence / March 16, 2026

Advanced Protection Mode in Android 17 prevents apps from misusing Accessibility Services

Security / March 16, 2026

Unprivileged users could exploit AppArmor bugs to gain root access

Hacking / March 16, 2026