MUST READ

Meta Accuses NSO of Violating WhatsApp Court Injunction

 | 

Everest Forms Pro WordPress Flaw is Handing Attackers Admin Access

 | 

UNC3753 Escalates: From Vishing Calls to Physical Office Intrusions at US Legal and Financial Firms

 | 

Meta AI Recovery Tool Flaw Exposed 20,000+ Instagram Accounts

 | 

IoT Botnet C0XMO Adds Competitor-Killing Capability

 | 

DentaQuest Breach: ShinyHunters Publish Data Impacting 2.6M People

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 100

 | 

Security Affairs newsletter Round 580 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

U.S. CISA adds SolarWinds Serv-U flaw to its Known Exploited Vulnerabilities catalog

 | 

Report: Anthropic Deploys Engineers to Support NSA Use of Mythos

 | 

Claude Opus Found a Four-Year-Old Hole in Zcash's Privacy Layer. Nobody Knows If Someone Already Used It.

 | 

Silent Ransom Group (SRG): Switching To DNS Fast Flux Infrastructure

 | 

Cisco SD-WAN Has a New Root-Level Problem, and There's No Fix Yet

 | 

PCPJack Exposed: Researchers Uncover 230-Node Cloud Email Relay Network

 | 

Fake Context Alignment: The Attack That Made Gemini Obey Strangers Through Your Notifications

 | 

U.S. CISA adds Mirasvit Full Page Cache Warmer flaw to its Known Exploited Vulnerabilities catalog

 | 

Critical Cisco Unified CM Bug Patched as Public Exploit Code Emerges

 | 

Gamaredon Uses WinRAR Vulnerability to Launch Modular Spy Campaign on Ukrainian Targets

 | 

Researcher Drops a New VS Code Zero-Day After Losing Trust in Microsoft's Disclosure Process

 | 

29 Arrests, Nine Crime Groups Dismantled: Another Blow to Illegal Streaming

 | 

Fox Tempest

Pierluigi Paganini May 28, 2026
Resecurity Supports Microsoft DCU in Disrupting Fox Tempest ’s Cybercriminal Code-Signing Ecosystem

Microsoft and Resecurity disrupted Fox Tempest, a malware-signing service that used fake Microsoft certificates to make malware look legitimate. Resecurity supported Microsoft’s Digital Crimes Unit (DCU) in its disruption of Fox Tempest, a financially motivated threat actor operating a malware-signing-as-a-service (MSaaS) capability used by cybercriminals to make malicious files appear legitimate. On May 19, 2026, […]

Pierluigi Paganini May 19, 2026
Microsoft dismantled malware-signing network Fox Tempest

Microsoft disrupted Fox Tempest, a malware-signing-as-a-service (MSaaS) that allowed attackers to sign malware with fake trusted certificates. Microsoft said it disrupted a cybercrime operation run by a threat actor named Fox Tempest, which helped threat actors sign malware with short-lived certificates to make malicious software appear legitimate. The service abused Microsoft Artifact Signing and supported […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Meta Accuses NSO of Violating WhatsApp Court Injunction

Security / June 08, 2026

Everest Forms Pro WordPress Flaw is Handing Attackers Admin Access

Security / June 08, 2026

UNC3753 Escalates: From Vishing Calls to Physical Office Intrusions at US Legal and Financial Firms

Cyber Crime / June 08, 2026

Meta AI Recovery Tool Flaw Exposed 20,000+ Instagram Accounts

Artificial Intelligence / June 08, 2026

IoT Botnet C0XMO Adds Competitor-Killing Capability

Uncategorized / June 08, 2026