MUST READ

ShinyHunters claims the hack of the European Commission

 | 

Iran-linked group Handala hacked FBI Director Kash Patel’s personal email account

 | 

U.S. CISA adds a flaw in F5 BIG-IP AMP to its Known Exploited Vulnerabilities catalog

 | 

The European Commission confirmed a cyberattack affecting part of its cloud systems

 | 

New AITM phishing wave hijacks TikTok Business accounts

 | 

CISA and BSI warn orgs of critical PTC Windchill and FlexPLM flaw

 | 

U.S. CISA adds an Aquasecurity Trivy flaw to its Known Exploited Vulnerabilities catalog

 | 

China-linked Red Menshen APT deploys stealthy BPFDoor implants in telecom networks

 | 

U.S. CISA adds a Langflow flaw to its Known Exploited Vulnerabilities catalog

 | 

Coruna exploit reveals evolution of Triangulation iOS exploitation framework

 | 

Researchers uncover WebRTC skimmer bypassing traditional defenses

 | 

Russian authorities arrest alleged LeakBase admin behind stolen data marketplace

 | 

Russian national convicted for running botnet used in attacks on U.S. firms

 | 

Patch now: TP-Link Archer NX routers vulnerable to firmware takeover

 | 

Recent Navia data breach impacts HackerOne employee data

 | 

FCC targets foreign router imports amid rising cybersecurity concerns

 | 

Cybercrime group Lapsus$ claims the hack of pharma giant AstraZeneca

 | 

Malicious LiteLLM versions linked to TeamPCP supply chain attack

 | 

Data breach at Dutch Ministry of Finance impacts staff following cyberattack

 | 

QualDerm Partners December 2025 data breach impacts over 3 Million people

 | 

Ivanti EPM

Pierluigi Paganini March 10, 2026
U.S. CISA adds Ivanti EPM, SolarWinds, and Omnissa Workspace One flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds EPM, SolarWinds, and Omnissa Workspace One flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Apple, Rockwell, and Hikvision flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: The first vulnerability added to the catalog is […]

Pierluigi Paganini December 09, 2025
Ivanti warns customers of new EPM flaw enabling remote code execution

Ivanti warns users to address a newly disclosed Endpoint Manager vulnerability that could let attackers execute code remotely. Software firm Ivanti addressed a newly disclosed vulnerability, tracked as CVE-2025-10573 (CVSS score 9.6), in its Endpoint Manager (EPM) solution. The vulnerability is a Stored XSS that could allow a remote unauthenticated attacker to execute arbitrary “Stored […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

ShinyHunters claims the hack of the European Commission

Data Breach / March 28, 2026

Iran-linked group Handala hacked FBI Director Kash Patel’s personal email account

Intelligence / March 28, 2026

U.S. CISA adds a flaw in F5 BIG-IP AMP to its Known Exploited Vulnerabilities catalog

Uncategorized / March 28, 2026

The European Commission confirmed a cyberattack affecting part of its cloud systems

Data Breach / March 27, 2026

New AITM phishing wave hijacks TikTok Business accounts

Security / March 27, 2026