MUST READ

U.S. CISA adds Google Chrome flaws to its Known Exploited Vulnerabilities catalog

 | 

Hackers targeted Poland’s National Centre for Nuclear Research

 | 

US and European authorities disrupt socksEscort proxy service tied to AVrecon botnet

 | 

AI-assisted Slopoly malware powers Hive0163’s ransomware campaigns

 | 

Google fixed two new actively exploited flaws in the Chrome browser

 | 

Beyond File Servers: Securing Unstructured Data in the Era of AI

 | 

Apple issues emergency fixes for Coruna flaws in older iOS versions

 | 

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

 | 

ENISA Technical Advisory on Secure Package Managers: Essential DevSecOps Guidance

 | 

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog

 | 

Bell Ambulance data breach impacted over 238,000 people

 | 

Pro-Palestinian hacktivist group Handala targets Stryker in global disruption

 | 

BeatBanker malware targets Android users with banking Trojan and crypto miner

 | 

Hewlett Packard Enterprise fixes critical authentication bypass in Aruba AOS-CX

 | 

KadNap bot compromises 14,000+ devices to route malicious traffic

 | 

Microsoft Patch Tuesday security updates for March 2026 fixed 84 bugs

 | 

Attackers exploit FortiGate devices to access sensitive network information

 | 

APT28 conducts long-term espionage on Ukrainian forces using custom malware

 | 

Threat actors use custom AuraInspector to harvest data from Salesforce systems

 | 

U.S. CISA adds Ivanti EPM, SolarWinds, and Omnissa Workspace One flaws to its Known Exploited Vulnerabilities catalog

 | 

hacking news

Pierluigi Paganini September 24, 2020
Hackers are using Zerologon exploits in attacks in the wild

Microsoft is warning of threat actors that are actively using the Windows Server Zerologon exploits in attacks in the wild. Microsoft has published a series of Tweets to warn of attackers that are actively exploiting the Windows Server Zerologon in attacks in the wild. The IT giant is urging Windows administrators to install the released […]

Pierluigi Paganini September 24, 2020
Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Experts worldwide warn about a surge in the Emotet activity, this time the alerts are from Microsoft, Italy and the Netherlands agencies. Two weeks ago, cybersecurity agencies across Asia and Europe warned of Emotet spam campaigns targeting businesses in France, Japan, and New Zealand. The French national cyber-security agency published an alert to warn of […]

Pierluigi Paganini September 23, 2020
Data for 600K customers of U.S. fitness chains Town Sports leaked online

The database containing personal information of over 600,000 clients of the US fitness chain Town Sports was exposed on the Internet. US fitness chain Town Sports has suffered a data breach, a database belonging to the company containing the personal information of over 600,000 people was exposed on the Internet. Town Sports International Holdings is an […]

Pierluigi Paganini September 23, 2020
Rogue employees at Shopify accessed customer info without authorization

E-commerce platform provider Shopify revealed that two members of its support staff accessed customer information without authorization. E-commerce platform provider Shopify on Tuesday confirmed that two employees of its support staff were accessing customer information without authorization. “Recently, Shopify became aware of an incident involving the data of less than 200 merchants. We immediately launched […]

Pierluigi Paganini September 23, 2020
Samba addresses the CVE-2020-1472 Zerologon Vulnerability

Samba team has released a security patch to address the Zerologon issue in the Microsoft Windows Netlogon Remote Protocol (MS-NRPC). Samba team has released a security patch to address the Zerologon (CVE-2020-1472) issue in the Microsoft Windows Netlogon Remote Protocol (MS-NRPC). The CVE-2020-1472 flaw is an elevation of privilege that resides in the Netlogon. The Netlogon service is an Authentication […]

Pierluigi Paganini September 23, 2020
HOW DO PROVIDERS IMPLEMENT INTERNET BLOCKING IN BELARUS?

Researchers at Qurium Media Foundation analyzed the blocking implemented by four different operators in Belarus. September 23, 2020 Qurium analyzes the blocking implemented by four different operators in Belarus Belarus operators use their own infrastructure to implement the blocking Block techniques include transparent web proxies, injection of HTTP responses, stateless and stateful SSL DPI and […]

Pierluigi Paganini September 23, 2020
Group-IB detects a series of ransomware attacks by OldGremlin

Researchers from threat hunting and intelligence firm Group-IB have detected a successful attack by a ransomware gang tracked as OldGremlin. Group-IB, a global threat hunting and intelligence company headquartered in Singapore, has detected a successful attack by a ransomware gang, codenamed OldGremlin. The Russian-speaking threat actors are relatively new to the Big Game Hunting. Since […]

Pierluigi Paganini September 22, 2020
CISA’s advisory warns of notable increase in LokiBot malware

US Cybersecurity and Infrastructure Security Agency (CISA) is warning of a notable increase in the use of LokiBot malware by threat actors since July 2020. The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a new security advisory warning federal agencies and the private sector of a surge in the attacks employing the LokiBot […]

Pierluigi Paganini September 22, 2020
German investigators blame Russian DoppelPaymer gang for deadly hospital attack

The investigation of German authorities on the recent attack on the Dusseldorf hospital reveals the possible involvement of Russian hackers. Last week, German authorities revealed that a cyber attack hit a major hospital in Duesseldorf, the Duesseldorf University Clinic, and a woman who needed urgent admission died after she had to be taken to another […]

Pierluigi Paganini September 22, 2020
Hackers hit Luxottica, production stopped at two Italian plants

The Italian eyewear and eyecare giant Luxottica has reportedly suffered a cyber attack that disrupted its operations in Italy and China. Luxottica Group S.p.A. is an Italian eyewear conglomerate and the world’s largest company in the eyewear industry. As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

U.S. CISA adds Google Chrome flaws to its Known Exploited Vulnerabilities catalog

Security / March 13, 2026

Hackers targeted Poland’s National Centre for Nuclear Research

Security / March 13, 2026

US and European authorities disrupt socksEscort proxy service tied to AVrecon botnet

Security / March 13, 2026

AI-assisted Slopoly malware powers Hive0163’s ransomware campaigns

Malware / March 13, 2026

Google fixed two new actively exploited flaws in the Chrome browser

Hacking / March 13, 2026