MUST READ

Xsolis Data Breach Impacts 1.4 Million People

 | 

ShapedPlugin Supply Chain Attack Backdoors Pro Plugin Updates

 | 

Squidbleed: 29-Year-Old Squid Bug Leaks User Credentials

 | 

WhatsApp Malware Campaign Hijacks Trust, Installs Legitimate Admin Tools

 | 

Texas Parks & Wildlife (TPWD) Data Breach impacts 3 Million People

 | 

Anthropic's Mythos AI broke into almost all NSA classified systems in hours

 | 

FortiBleed: The Most Detailed Breakdown Yet of an Active Russian Credential-Harvesting Operation

 | 

4,300+ Outdated Routers Hijacked in Stealthy Spy Infrastructure by AryStinger malware

 | 

usbliter8 Brings Unpatchable BootROM Exploit to Apple A12 and A13 Devices

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 102

 | 

Security Affairs newsletter Round 582 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Inside GentleKiller: The EDR-Killer Powering The Gentlemen

 | 

FortiBleed Exposes Global Credential-Spraying Operation

 | 

CISA Warns of Active Exploitation Following FortiBleed Leak

 | 

14,971 WordPress Sites Cleaned in Global SocGholish Takedown

 | 

U.S. CISA adds Splunk Enterprise flaw to its Known Exploited Vulnerabilities catalog and urges agencies to fix it by Sunday

 | 

Peter Thiel 's Secret Society Leak Creates a Perfect Target List for Espionage, Influence Operations, and Blackmail

 | 

24 Billion Stolen Credentials Exposed in Massive Data Leak

 | 

Cisco fixed a critical ISE vulnerability that lets attackers to gain root access

 | 

F5 Patches Critical NGINX Vulnerabilities Enabling Unauthenticated Code Execution

 | 

ShapedPlugin

Pierluigi Paganini June 23, 2026
ShapedPlugin Supply Chain Attack Backdoors Pro Plugin Updates

Attackers backdoored ShapedPlugin Pro updates, deploying malware that steals credentials, 2FA secrets, and grants full site access. If you installed a ShapedPlugin Pro plugin between April and June 2026 and kept it updated, your site may be compromised. Not because you did something wrong, but because the vendor’s own build and distribution pipeline was breached. […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Xsolis Data Breach Impacts 1.4 Million People

Cyber Crime / June 23, 2026

ShapedPlugin Supply Chain Attack Backdoors Pro Plugin Updates

Hacking / June 23, 2026

Squidbleed: 29-Year-Old Squid Bug Leaks User Credentials

Hacking / June 23, 2026

WhatsApp Malware Campaign Hijacks Trust, Installs Legitimate Admin Tools

Malware / June 22, 2026

Texas Parks & Wildlife (TPWD) Data Breach impacts 3 Million People

Data Breach / June 22, 2026