MUST READ

Critical Fortinet FortiClientEMS flaw allows remote code execution

 | 

BeyondTrust fixes critical pre-auth bug allowing remote code execution

 | 

European Commission probes cyberattack on mobile device management system

 | 

Attackers abuse SolarWinds Web Help Desk to install Zoho agents and Velociraptor

 | 

Romania’s national oil pipeline firm Conpet reports cyberattack

 | 

Flickr moves to contain data exposure, warns users of phishing

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 83

 | 

Security Affairs newsletter Round 562 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

DKnife toolkit abuses routers to spy and deliver malware since 2019

 | 

Italian university La Sapienza still offline to mitigate recent cyber attack

 | 

CISA pushes Federal agencies to retire end-of-support edge devices

 | 

Nearly 5 Million Web Servers Found Exposing Git Metadata – Study Reveals Widespread Risk of Code and Credential Leaks

 | 

U.S. CISA adds SmarterTools SmarterMail and React Native Community CLI flaws to its Known Exploited Vulnerabilities catalog

 | 

Hacker claims theft of data from 700,000 Substack users; Company confirms breach

 | 

Pro-Russian group Noname057(16) launched DDoS attacks on Milano Cortina 2026 Winter Olympics

 | 

China-linked Amaranth-Dragon hackers target Southeast Asian governments in 2025

 | 

CVE-2025-22225 in VMware ESXi now used in active ransomware attacks

 | 

Taiwanese operator of Incognito Market sentenced to 30 years over $105M darknet drug ring

 | 

Paris raid on X focuses on child abuse material allegations

 | 

GreyNoise tracks massive Citrix Gateway recon using 63K+ residential proxies and AWS

 | 

Security Affairs

Pierluigi Paganini July 25, 2016
Bug hunter downloaded the entire Vine source code

The Indian security expert and bug hunter Avinash has accessed and downloaded the entire Vine source code and it was really easy. A hacker has accessed and downloaded the source code of the Twitter’s Vine application. Vine is a short-form video sharing service, acquired by Twitter in 2012, that allows users to share small videos of 6 seconds […]

Pierluigi Paganini July 24, 2016
Akamai Threat Advisory – Evolution of DDoS attacks

According to the US-based Akamai Technologies Distributed Denial Of Service (DDoS) attacks have a great level of sophistication today. The Morris Worm of 1989 caused massive damage and losses with its unintentionally caused Denial Of Service (DoS) attacks. Fast forward to today, attacks have sharpened teeth targeting almost every IT service, from telco to gaming firms. […]

Pierluigi Paganini July 24, 2016
Security Affairs newsletter Round 70 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. First of all let me inform you that at the #infosec16 SecurityAffairs was awarded as The Best European Personal Security Blog http://securityaffairs.co/wordpress/48202/breaking-news/securityaffairs-best-european-personal-security-blog.html THANK YOU! Hackers used malware to steal $2 million from ATMs in Taiwan Riffle network will be […]

Pierluigi Paganini July 24, 2016
Hacking Pokemon Go to reveal characters all around you

A group of hackers has devised a method to hack Pokemon Go to and reveal the exact location of characters all around you. Pokemon Go is the game of the moment, its viral and the attention of the media is very high on the gaming novelty. As the players know, they haven’t the precise location of nearby Pokemon […]

Pierluigi Paganini July 21, 2016
Feds arrested the KickassTorrents owner and seized the domain names

The federal authorities have arrested the alleged mastermind behind KickassTorrents (KAT) and seized its domains, blocking its operations. According to the US Justice Department, the feds have arrested Artem Vaulin the alleged mastermind behind the BitTorrent distribution site KickassTorrents (KAT). The KickassTorrents website kat.cr is down worldwide and most of KAT domains (kickasstorrents.com, kickass.to, kat.ph, kastatic.com, thekat.tv, kat.cr, kickass.cr) […]

Pierluigi Paganini July 20, 2016
Hacking Apple devices with just a Message exploiting the CVE-2016-4631

This critical flaw CVE-2016-4631 resides in the ImageIO and could be exploited by a remote attacker to steal sensitive information from Apple devices. Apple fans, I have a bad news for you, just one specially-crafted message can expose your personal information, including your authentication credentials stored in the memory of your Apple device. This means […]

Pierluigi Paganini July 18, 2016
Robocop is (almost) here : Artificial Intelligence in your Security Team

DARPA organized a challenge where 7 finalists will battle it out with the Artificial Intelligence system to detect flaws and scan networks for exploits. The Rio Olympics 2016 is something everyone is looking forward to. The sportsmanship, the record making, medals the spirit of the game and the hilarious doping scandals like the 1920’s grafting […]

Pierluigi Paganini July 17, 2016
Security Affairs newsletter Round 69 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. First of all let inform you that at the #infosec16 SecurityAffairs was awarded as The Best European Personal Security Blog http://securityaffairs.co/wordpress/48202/breaking-news/securityaffairs-best-european-personal-security-blog.html THANK YOU! Hacker Interviews – s1ege Realstatistics campaign leads to ransomware via compromised sites Security Affairs newsletter Round […]

Pierluigi Paganini July 17, 2016
Riffle network will be more secure and performing than Tor

A group of researchers has developed Riffle, a new anonymity scheme that provides better security and performance than others, including Tor. Tor is probably the most popular anonymizing network, million of users leveraged on it to protect their privacy and online anonymity. Now Massachusetts Institute of Technology researchers revealed a new anonymity architecture that could rival Tor. […]

Pierluigi Paganini July 15, 2016
Furtim’s advance capabilities and the Energy Sector

The Labs team at SentinelOne recently discovered a sophisticated malware dubbed Furtim specifically targeting at least one European energy company. In May of this year, security researcher Yotam Gottesam with enSilo, began unraveling a mystery that continues to unravel. First reported by FireF0X, a self-proclaimed “ex-malware analyst” located in the Russian Federation, the Furtim malware […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Critical Fortinet FortiClientEMS flaw allows remote code execution

Security / February 09, 2026

BeyondTrust fixes critical pre-auth bug allowing remote code execution

Security / February 09, 2026

European Commission probes cyberattack on mobile device management system

Data Breach / February 09, 2026

Attackers abuse SolarWinds Web Help Desk to install Zoho agents and Velociraptor

Security / February 09, 2026

Romania’s national oil pipeline firm Conpet reports cyberattack

Cyber Crime / February 09, 2026