MUST READ

Senegal shuts National ID office after ransomware attack

 | 

Dutch agencies hit by Ivanti EPMM exploit exposing employee contact data

 | 

China-linked APT UNC3886 targets Singapore telcos

 | 

Critical Fortinet FortiClientEMS flaw allows remote code execution

 | 

BeyondTrust fixes critical pre-auth bug allowing remote code execution

 | 

European Commission probes cyberattack on mobile device management system

 | 

Attackers abuse SolarWinds Web Help Desk to install Zoho agents and Velociraptor

 | 

Romania’s national oil pipeline firm Conpet reports cyberattack

 | 

Flickr moves to contain data exposure, warns users of phishing

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 83

 | 

Security Affairs newsletter Round 562 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

DKnife toolkit abuses routers to spy and deliver malware since 2019

 | 

Italian university La Sapienza still offline to mitigate recent cyber attack

 | 

CISA pushes Federal agencies to retire end-of-support edge devices

 | 

Nearly 5 Million Web Servers Found Exposing Git Metadata – Study Reveals Widespread Risk of Code and Credential Leaks

 | 

U.S. CISA adds SmarterTools SmarterMail and React Native Community CLI flaws to its Known Exploited Vulnerabilities catalog

 | 

Hacker claims theft of data from 700,000 Substack users; Company confirms breach

 | 

Pro-Russian group Noname057(16) launched DDoS attacks on Milano Cortina 2026 Winter Olympics

 | 

China-linked Amaranth-Dragon hackers target Southeast Asian governments in 2025

 | 

CVE-2025-22225 in VMware ESXi now used in active ransomware attacks

 | 

Security Affairs

Pierluigi Paganini May 13, 2016
SWIFT announced that a second bank was a victim of cyber heist

The SWIFT announced that a second commercial bank was a victim of a cyber heist, the crime appears to be part of a broad online attack on global banking. A second malware-based attack hit the SWIFT (Society for Worldwide Interbank Financial Telecommunications) system. The news was spread by the SWIFT on Thursday, the attack has many similarities with […]

Pierluigi Paganini May 12, 2016
Flawed 7-Zip compression tool opens systems to hack.Update it now!

Recently security experts at Cisco Talos have discovered multiple exploitable vulnerabilities in 7-Zip that open users to cyber attacks. According to the Cisco security researcher Jaeson Schultz, multiple flaws in the 7-Zip compression tool could be exploited by hackers to gain the complete control on the target machine running the popular software. “Recently Cisco Talos has […]

Pierluigi Paganini May 08, 2016
Security Affairs newsletter Round 59 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs Pirate Bay visitors infected with Cerber ransomware via bad ads The British GCHQ has disclosed dozens vulnerabilities this year Garage4hackers Webcast – Bypass Modern WAFs Exemplified at XSS Security Affairs newsletter Round 58 – News of the […]

Pierluigi Paganini May 06, 2016
Three-quarters of Android devices affected by the Qualcomm software flaw

Mandiant – FireEye has disclosed the details of a serious information disclosure vulnerability affecting one of the Qualcomm software package widely used. Security researchers from the Mandiant firm have discovered a “high severity” vulnerability in the Qualcomm tethering controller (CVE-2016-2060) that could be exploited by a malicious application to access user information. Recently Google released an Android update that addresses […]

Pierluigi Paganini May 01, 2016
Security Affairs newsletter Round 58 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs Snap packaging could reveal private data in Ubuntu 16.04 version Bangladesh Bank hacked due to inadequate defense systems Dutch police seize the Ennetcom encrypted communication network Security Affairs newsletter Round 57 – News of the week The […]

Pierluigi Paganini April 30, 2016
Analyzing Cyber Capabilities of the ISIS

The data intelligence firm Flashpoint has published an interesting report that explore the cyber capabilities of the ISIS radical group. In the last days of April, Flashpoint a global leader in Deep and Dark Web data and intelligence published a report that is dedicated to the analysis of cyber capabilities of the ISIS with the […]

Pierluigi Paganini April 24, 2016
Dutch police seize the Ennetcom encrypted communication network

The Dutch police in an international effort with Canadian authorities seized the Ennetcom encrypted communication network used by 19,000 users. Another success of the Dutch law enforcement against the cybercrime. The police arrested the owner of Ennetcom, a provider of encrypted communications with more than 19,000 customers. Prosecutors suspect he was using the business to manage […]

Pierluigi Paganini April 22, 2016
Facebook hacked, someone deployed a malicious webshell on its server

Facebook hacked!  The security expert Orange Tsai discovered the presence of a malicious webshell on one of the company servers. The security expert Orange Tsai from the DevCore firm has found a malicious web shell on Facebook Server. The researcher was analyzing the Facebook’s infrastructure when noticed a domain called files.fb.com. Intrigued, the expert has tried to access […]

Pierluigi Paganini April 19, 2016
Hackers spied on a US Congressman’s communication abusing the SS7 protocol

Security experts eavesdropped and geographic tracked a US Congressman only using his phone number by abusing the SS7 protocol. Hackers eavesdropped and geographic tracked a US Congressman only using his phone number. Security experts will be no surprised, I wrote many articles on the topic explaining that security flaws in the SS7 protocol could be exploited by an attacker to […]

Pierluigi Paganini April 17, 2016
Lottery security director hacked random-number generator to rig lotteries

New evidence collected by prosecutors shows lottery machines were rigged to generate predictable numbers on specific days of the year. Last year, the security director of a US lottery was discovered hacking the mechanism of the extraction in order to predict the winning tickets. According to new details revealed by The Des Moines Register, the […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Senegal shuts National ID office after ransomware attack

Data Breach / February 10, 2026

Dutch agencies hit by Ivanti EPMM exploit exposing employee contact data

Security / February 10, 2026

China-linked APT UNC3886 targets Singapore telcos

APT / February 10, 2026

Critical Fortinet FortiClientEMS flaw allows remote code execution

Security / February 09, 2026

BeyondTrust fixes critical pre-auth bug allowing remote code execution

Security / February 09, 2026