MUST READ

U.S. CISA adds RoundCube Webmail flaws to its Known Exploited Vulnerabilities catalog

 | 

PayPal discloses extended data leak linked to Loan App glitch

 | 

North Korean IT worker scam nets Ukrainian five-year sentence in the U.S.

 | 

FBI warns of surge in ATM Jackpotting, $20 Million lost in 2025

 | 

Red Card 2.0: INTERPOL busts scam networks across Africa, seizes millions

 | 

PromptSpy abuses Gemini AI to gain persistent access on Android

 | 

Germany’s national rail operator Deutsche Bahn hit by a DDoS attack

 | 

U.S. CISA adds Dell RecoverPoint and GitLab flaws to its Known Exploited Vulnerabilities catalog

 | 

CISA alerts to critical auth bypass CVE-2026-1670 in Honeywell CCTVs

 | 

Irish regulator probes X after Grok allegedly generated sexual images of children

 | 

Intellexa’s Predator spyware infected Angolan journalist’s device, Amnesty reports

 | 

French Ministry confirms data access to 1.2 Million bank accounts

 | 

Notepad++ patches flaw used to hijack update system

 | 

VS Code extensions with 125M+ installs expose users to cyberattacks

 | 

China-linked APT weaponized Dell RecoverPoint zero-day since 2024

 | 

U.S. CISA adds Google Chromium CSS, Microsoft Windows, TeamT5 ThreatSonar Anti-Ransomware, and Zimbra flaws to its Known Exploited Vulnerabilities catalog

 | 

Keenadu backdoor found preinstalled on Android devices, powers Ad fraud campaign

 | 

SmartLoader hackers clone Oura MCP project to spread StealC malware

 | 

Polish cybercrime Police arrest man linked to Phobos ransomware operation

 | 

Poorly crafted phishing campaign leverages bogus security incident report

 | 

Pierluigi Paganini

Pierluigi Paganini July 16, 2014
SSL Blacklist a new weapon to fight malware and botnet

A Security Researcher at Abuse.ch has started SSL blacklist project to create an archive of all the digital certificates used for illicit activities. In recent years security experts have discovered many cases in which bad actors have abused of digital certificates for illicit activities, from malware distribution to Internet surveillance. Botmasters are exploiting new techniques to avoid detection by security experts and […]

Pierluigi Paganini July 16, 2014
Project Zero – Google is hiring the hacking excellence to improve Internet security

Project Zero is the new initiative announced by Google. The company is hiring the top security experts to make the Internet a more secure place. Google has publicly announced a new program called “Project Zero,” an ambitious project which involves a team of Star Hackers and Bug Hunters with the purpose to improve security of the […]

Pierluigi Paganini July 10, 2014
The Internet of Things and Cybercrime – what risks?

Analysis of the compliance measures to be put in place in order to face data protection issues affecting the Internet of Things. The Internet of Things is expected to lead to 50 billion connected devices by 2020 collecting and exchanging personal data about their users, their lives, their preferences and tastes.  This will lead not […]

Pierluigi Paganini June 26, 2014
PayPal two-factor authentication for mobile apps is flawed

Security experts at Duo Security have discovered a serious flaw in the implementation of two-factor authentication which allow attackers to bypass it. Two-factor authentication processes if flawed could give to companies a false sense of security even if we are discussing of PayPal. In the past we have explained how to by-pass Two-factor authentication in various ways, for example, using […]

Pierluigi Paganini June 24, 2014
HackingTeam, new revelations on the surveillance network

Kaspersky Lab and Citizen Lab have released the results of their analysis on the global C2 infrastructure used by the Italian firm HackingTeam. Security experts from Kaspersky Lab and Citizen Lab at the Munk School of Global Affairs at the University of Toronto have released the results of their analysis on the  global command and control […]

Pierluigi Paganini June 04, 2014
Revealed the spy bases of GCHQ intelligence agency tapping undersea cables

A last revelation on the surveillance activities of British intelligence GCHQ confirms the existence of spy base tapping undersea cables in the Middle East. In the last year Edward Snowden has leaked many disconcerting documents for the surveillance activity conducted by the NSA and GCHQ intelligence agencies, the last revelation is related Britain covert spying programme, in particular the information on clandestine British base […]

Pierluigi Paganini June 02, 2014
Cupid attack, Heartbleed Attack Vectors target Enterprise Wireless and Android Devices

A Portuguese security expert has uncovered the Cupid attack, a new Heartbleed attack vector which can impact Android devices, enterprise wireless networks and other connected devices. Cupid is the name of the new Heartbleed attack method recently proposed by Portuguese security researcher Luis Grangeia, unlike the original version of the attack, which took place on TLS connections over TCP, […]

Pierluigi Paganini May 29, 2014
Encryption Tool TrueCrypt shuts down mysteriously. Is it unsecure?

Encryption Tool TrueCrypt shuts down mysteriously, a message on the official SourceForge-hosted page is encouraging users to adopt Microsoft Bitlocker. TrueCrypt, another myth is falling down? Many TrueCrypt users have had a nasty surprise visiting the TrueCrypt page at SourceForge, the page content warns visitors that the open source encryption software is not secure and that its […]

Pierluigi Paganini May 27, 2014
Users can continue to receive Windows XP updates with registry hack

Disclosed on Internet a curious news, hacking the Windows OS registry it is possible to get Windows XP Security Updates until 2019. On April 8th 2014 Microsoft officially ended the support for Windows XP, but there is still a wide audience of users that are using the oldest Microsoft OS. This portion of users is no more receiving security updates […]

Pierluigi Paganini May 14, 2014
NSA intercepts US-made Routers to implant surveillance backdoor

Journalist Glenn Greenwald published the last revelation of NSA surveillance, the agency tampers with US-made internet routers destined for foreign markets. A new collection of documents leaked by Edward Snowden claims the NSA intercepted US-made routers bound for export and to implant backdoor in their circuits. The allegations have been published by the journalist Glenn Greenwald, […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

U.S. CISA adds RoundCube Webmail flaws to its Known Exploited Vulnerabilities catalog

Security / February 21, 2026

PayPal discloses extended data leak linked to Loan App glitch

Data Breach / February 20, 2026

North Korean IT worker scam nets Ukrainian five-year sentence in the U.S.

Cyber Crime / February 20, 2026

FBI warns of surge in ATM Jackpotting, $20 Million lost in 2025

Cyber Crime / February 20, 2026

Red Card 2.0: INTERPOL busts scam networks across Africa, seizes millions

Cyber Crime / February 20, 2026