MUST READ

The cybercriminal behind the 2016 Bitfinex hack has been released from prison early thanks to Trump’s 2018 First Step Act

 | 

VVS Stealer, a new python malware steals Discord credentials

 | 

Resecurity Caught ShinyHunters in Honeypot

 | 

What is happening to the Internet in Venezuela? Did the U.S. use cyber capabilities?

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 78

 | 

Security Affairs newsletter Round 557 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

President Trump blocks $2.9M Emcore chip sale over security concerns

 | 

French authorities investigate AI ‘undressing’ deepfakes on X

 | 

Thousands of ColdFusion exploit attempts spotted during Christmas holiday

 | 

Two U.S. cybersecurity professionals plead guilty in BlackCat/Alphv ransomware case

 | 

Covenant Health data breach after ransomware attack impacted over 478,000 people

 | 

Phishing campaign abuses Google Cloud Application to impersonate legitimate Google emails

 | 

IBM warns of critical API Connect bug enabling remote access

 | 

Trust Wallet confirms second Shai-Hulud supply-chain attack, $8.5M in crypto stolen

 | 

React2Shell under attack: RondoDox Botnet spreads miners and malware

 | 

ESA disclosed a data breach, hackers breached external servers

 | 

Singapore CSA warns of maximun severity SmarterMail RCE flaw

 | 

MongoBleed (CVE-2025-14847): the US, China, and the EU are among the top exploited GEOs

 | 

Coupang announces $1.17B compensation plan for 33.7M data breach victims

 | 

Mustang Panda deploys ToneShell via signed kernel-mode rootkit driver

 | 

Pierluigi Paganini

Pierluigi Paganini July 07, 2020
Project Freta, a free service that allows finding malware in OS memory snapshots

Microsoft launched Project Freta, a free service that allows users to find malware, including rootkit, in operating system memory snapshots. Microsoft has unveiled a new project, dubbed Project Freta, for the discovery of malicious code in operating system memory snapshots. The Project Freta is a cloud-based service that allows users to collect forensic evidence of attacks […]

Pierluigi Paganini July 07, 2020
Ransomware infected systems at Xchanging, a DXC subsidiary

Systems at Xchanging, a subsidiary of Global IT services and solutions provider DXC Technology was hit by ransomware over the weekend. Global IT services and solutions provider DXC Technology disclosed a ransomware attack that infected systems at its Xchanging subsidiary. Xchanging is a business process and technology services provider and integrator, which provides technology-enabled business services […]

Pierluigi Paganini July 07, 2020
Unsecured Chinese companies leak users’ sensitive personal and business data

Researchers at Cybernews uncovered two unsecured databases, with millions of records, belonging to Chinese companies. The original post available here: https://cybernews.com/security/unsecured-chinese-companies-leak-users-sensitive-personal-and-business-data/ Our research uncovered two unsecured databases, with millions of records, belonging to companies that are based in China and provide different types of services. One database belongs to Xiaoxintong, which offers multiple apps and services […]

Pierluigi Paganini July 06, 2020
North Korean Lazarus APT stole credit card data from US and EU stores

North Korea-linked Lazarus APT has been stealing payment card data from customers of large retailers in the U.S. and Europe for at least a year. Sansec researchers reported that North Korea-linked Lazarus APT group has been stealing payment card information from customers of large retailers in the U.S. and Europe for at least a year. […]

Pierluigi Paganini July 06, 2020
Threat actors are attempting to exploit recently fixed F5 BIG-IP flaw

Attackers are already attempting to exploit the recently fixed bug in F5 Networks BIG-IP product, security experts warn. A few days after the disclosure of the vulnerability in the F5 Networks BIG-IP product threat actors started exploiting it in attacks in the wild. F5 Networks has recently addressed a critical remote code execution (RCE) vulnerability, tracked […]

Pierluigi Paganini July 05, 2020
Huawei faces 5G ban from British’s 5G network within months

UK Prime Minister Boris Johnson is going to ban the use of equipment from the Chinese tech giant Huawei in Britain’s 5G network, reported The Daily Telegraph. British Prime Minister Boris Johnson is expected to begin phasing out the use of network equipment manufactured by the Chinese tech giant Huawei in the UK’s 5G network […]

Pierluigi Paganini July 05, 2020
Security Affairs newsletter Round 271

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. Asian media firm E27 hacked, attackers asked for a donation Australian ACSC ‘s report confirms the use of Chinese malware in recent attacks Magento 1.x EOL is set on June […]

Pierluigi Paganini July 05, 2020
Cisco Talos discloses technicals details of Chrome, Firefox flaws

Cisco’s Talos experts disclosed the details of recently patched vulnerabilities affecting the popular Chrome and Firefox web browsers. Researchers from Cisco Talos disclosed technical details of recently patched vulnerabilities affecting the popular Chrome and Firefox web browsers. The first issue, tracked as CVE-2020-6463, is a memory corruption vulnerability that affects PDFium, an open source PDF […]

Pierluigi Paganini July 05, 2020
CISA warns organizations of cyberattacks from the Tor network

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) warned enterprises about cyberattacks from the Tor network. The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) is warning enterprises of cyberattacks launched from the Tor network. Threat actors leverage the Tor network to hide the […]

Pierluigi Paganini July 04, 2020
Try2Cry ransomware implements wormable capability to infect other Windows systems

A new piece of ransomware dubbed Try2Cry leverages infected USB flash drives and Windows shortcuts (LNK files) to infect other Windows systems. A new ransomware dubbed Try2Cry implements wormable capabilities to infect other Windows systems by using USB flash drives or Windows shortcuts (LNK files). The Try2Cry ransomware was discovered by the malware researcher Karsten Hahn while analyzing an unidentified malware sample. The expert was […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

The cybercriminal behind the 2016 Bitfinex hack has been released from prison early thanks to Trump’s 2018 First Step Act

Cyber Crime / January 05, 2026

VVS Stealer, a new python malware steals Discord credentials

Malware / January 05, 2026

Resecurity Caught ShinyHunters in Honeypot

Security / January 04, 2026

What is happening to the Internet in Venezuela? Did the U.S. use cyber capabilities?

Intelligence / January 04, 2026

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 78

Malware / January 04, 2026