MUST READ

UAT-10362 linked to LucidRook attacks targeting Taiwan-based institutions

 | 

EngageLab SDK flaw opens door to private data on 50M Android devices

 | 

Bitcoin Depot hack leads to $3.6M Bitcoin theft via stolen credentials

 | 

Eurail data breach impacted 308,777 people

 | 

Malicious PDF reveals active Adobe Reader zero-day in the wild

 | 

Masjesu botnet targets IoT devices while evading high-profile networks

 | 

The alleged breach of China’s National Supercomputing Center can have serious geopolitical consequences

 | 

Internet-Exposed ICS Devices Raise Alarm for Critical Sectors

 | 

U.S. CISA adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog

 | 

Russia-linked APT28 uses PRISMEX to infiltrate Ukraine and allied infrastructure with advanced tactics

 | 

Signature Healthcare hit by cyberattack, services and pharmacies impacted

 | 

Project Glasswing powered by Claude Mythos: defending software before hackers do

 | 

U.S. agencies alert: Iran-linked actors target critical infrastructure PLCs

 | 

Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code execution

 | 

Major outage cripples Russian banking apps and metro payments nationwide

 | 

Fast-moving Storm-1175 uses new exploits to breach networks and drop Medusa

 | 

GPUBreach exploit uses GPU memory bit-flips to achieve full system takeover

 | 

Phishing LNK files and GitHub C2 power new DPRK cyber attacks

 | 

BKA unmasks two REvil Ransomware operators behind 130+ German attacks

 | 

Attackers Exploit RCE Flaw as 14,000 F5 BIG-IP APM Instances Remain Exposed

 | 

TikTok

Pierluigi Paganini November 23, 2020
TikTok fixed security issues that could have led one-click account takeover

TikTok has addressed a couple of security issues that could have been chained to led account takeover.  The first issue addressed by the social media platform is a reflected XSS security flaw that has been reported by the bug bounty hunter Muhammed “milly” Taskiran via the bug bounty platform HackerOne. The Cross-Site-Scripting flaw affected the company […]

Pierluigi Paganini October 17, 2020
TikTok launched a public bug bounty program

Chinese video-sharing social networking service TikTok announced this week the launch of a public bug bounty program in collaboration with HackerOne. The popular Chinese video-sharing social networking service TikTok has launched this week a public bug bounty program through the HackerOne platform. White hat hackers are invited to report security flaws in TikTok websites, including […]

Pierluigi Paganini August 01, 2020
Trump says he will ban popular Chinese video app TikTok in the US

President Donald Trump announced that he plans to ban the popular short video app TikTok from operating in the US as early as Saturday. President Donald Trump has announced he is going to ban the popular Chinese video-sharing app TikTok in the US. The US President is ready to sign an executive order as early […]

Pierluigi Paganini January 08, 2020
Security flaws allowed hijacking any TikTok account

A flaw in the popular TikTok app could allow attackers to hijack any user account just by knowing the mobile number of the victim. Security experts from CheckPoint have discovered a critical vulnerability in the popular TikTok app that could be exploited by a remote attacker to hijack any user account just by knowing the […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

UAT-10362 linked to LucidRook attacks targeting Taiwan-based institutions

Security / April 10, 2026

EngageLab SDK flaw opens door to private data on 50M Android devices

Hacking / April 10, 2026

Bitcoin Depot hack leads to $3.6M Bitcoin theft via stolen credentials

Cyber Crime / April 10, 2026

Eurail data breach impacted 308,777 people

Data Breach / April 09, 2026

Malicious PDF reveals active Adobe Reader zero-day in the wild

Hacking / April 09, 2026