MUST READ

The European Commission confirmed a cyberattack affecting part of its cloud systems

 | 

New AITM phishing wave hijacks TikTok Business accounts

 | 

CISA and BSI warn orgs of critical PTC Windchill and FlexPLM flaw

 | 

U.S. CISA adds an Aquasecurity Trivy flaw to its Known Exploited Vulnerabilities catalog

 | 

China-linked Red Menshen APT deploys stealthy BPFDoor implants in telecom networks

 | 

U.S. CISA adds a Langflow flaw to its Known Exploited Vulnerabilities catalog

 | 

Coruna exploit reveals evolution of Triangulation iOS exploitation framework

 | 

Researchers uncover WebRTC skimmer bypassing traditional defenses

 | 

Russian authorities arrest alleged LeakBase admin behind stolen data marketplace

 | 

Russian national convicted for running botnet used in attacks on U.S. firms

 | 

Patch now: TP-Link Archer NX routers vulnerable to firmware takeover

 | 

Recent Navia data breach impacts HackerOne employee data

 | 

FCC targets foreign router imports amid rising cybersecurity concerns

 | 

Cybercrime group Lapsus$ claims the hack of pharma giant AstraZeneca

 | 

Malicious LiteLLM versions linked to TeamPCP supply chain attack

 | 

Data breach at Dutch Ministry of Finance impacts staff following cyberattack

 | 

QualDerm Partners December 2025 data breach impacts over 3 Million people

 | 

Citrix NetScaler critical flaw could leak data, update now

 | 

81-month sentence for Russian hacker behind major ransomware campaigns

 | 

North Korea-linked threat actors abuse VS Code auto-run to spread StoatWaffle malware

 | 

Laundry Bear

Pierluigi Paganini March 16, 2026
Russia-linked APT uses DRILLAPP backdoor to spy on Ukrainian targets

Russia-linked threat actors target Ukrainian entities with DRILLAPP backdoor and use Edge debugging for stealth. A new DRILLAPP backdoor campaign targets Ukrainian organizations, abusing Microsoft Edge debugging to evade detection. Observed in February 2026, it shows links to previous Russian-aligned operations by Laundry Bear APT group (aka UAC-0190, Void Blizzard) using the PLUGGYAPE malware family […]

Pierluigi Paganini May 27, 2025
Russia-linked APT Laundry Bear linked to 2024 Dutch Police attack

A new Russia-linked APT group, tracked as Laundry Bear, has been linked to a Dutch police security breach in September 2024. Netherlands General Intelligence and Security Service (AIVD) and the Netherlands Defence Intelligence and Security Service (MIVD) have linked a previously undetected Russia-linked group, tracked Laundry Bear (aka Void Blizzard), to a 2024 police breach. […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

The European Commission confirmed a cyberattack affecting part of its cloud systems

Data Breach / March 27, 2026

New AITM phishing wave hijacks TikTok Business accounts

Security / March 27, 2026

CISA and BSI warn orgs of critical PTC Windchill and FlexPLM flaw

Security / March 27, 2026

U.S. CISA adds an Aquasecurity Trivy flaw to its Known Exploited Vulnerabilities catalog

Security / March 27, 2026

China-linked Red Menshen APT deploys stealthy BPFDoor implants in telecom networks

Malware / March 27, 2026