MUST READ

Storm-2561 lures victims to spoofed VPN sites to harvest corporate logins

 | 

Interpol - Operation Synergia III leads to 45,000 malicious IPs dismantled and 94 arrests worldwide

 | 

U.S. CISA adds Google Chrome flaws to its Known Exploited Vulnerabilities catalog

 | 

Hackers targeted Poland’s National Centre for Nuclear Research

 | 

US and European authorities disrupt socksEscort proxy service tied to AVrecon botnet

 | 

AI-assisted Slopoly malware powers Hive0163’s ransomware campaigns

 | 

Google fixed two new actively exploited flaws in the Chrome browser

 | 

Beyond File Servers: Securing Unstructured Data in the Era of AI

 | 

Apple issues emergency fixes for Coruna flaws in older iOS versions

 | 

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

 | 

ENISA Technical Advisory on Secure Package Managers: Essential DevSecOps Guidance

 | 

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog

 | 

Bell Ambulance data breach impacted over 238,000 people

 | 

Pro-Palestinian hacktivist group Handala targets Stryker in global disruption

 | 

BeatBanker malware targets Android users with banking Trojan and crypto miner

 | 

Hewlett Packard Enterprise fixes critical authentication bypass in Aruba AOS-CX

 | 

KadNap bot compromises 14,000+ devices to route malicious traffic

 | 

Microsoft Patch Tuesday security updates for March 2026 fixed 84 bugs

 | 

Attackers exploit FortiGate devices to access sensitive network information

 | 

APT28 conducts long-term espionage on Ukrainian forces using custom malware

 | 

Storm-2561

Pierluigi Paganini March 14, 2026
Storm-2561 lures victims to spoofed VPN sites to harvest corporate logins

Attackers linked to Storm-2561 use SEO-poisoned search results to lure users to fake Ivanti, Cisco, and Fortinet VPN sites that steal corporate login credentials. In mid-January 2026, Microsoft Defender Experts uncovered a credential-theft campaign attributed to Storm-2561. Threat actor is spreading fake enterprise VPN clients impersonating Ivanti, Cisco, and Fortinet software. By poisoning search engine […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Storm-2561 lures victims to spoofed VPN sites to harvest corporate logins

Cyber Crime / March 14, 2026

Interpol - Operation Synergia III leads to 45,000 malicious IPs dismantled and 94 arrests worldwide

Cyber Crime / March 14, 2026

U.S. CISA adds Google Chrome flaws to its Known Exploited Vulnerabilities catalog

Security / March 13, 2026

Hackers targeted Poland’s National Centre for Nuclear Research

Security / March 13, 2026

US and European authorities disrupt socksEscort proxy service tied to AVrecon botnet

Security / March 13, 2026