MUST READ

7,500+ Magento sites defaced in global hacking campaign

 | 

Navia data breach impacts nearly 2.7 Million people

 | 

Apple urges iPhone users to update as Coruna and DarkSword exploit kits emerge

 | 

Global law enforcement operation targets AISURU, Kimwolf, JackSkid botnet operators

 | 

French aircraft carrier Charles de Gaulle tracked via Strava activity in OPSEC failure

 | 

Critical Ubiquiti UniFi UniFi security flaw allows potential account hijacking

 | 

U.S. CISA adds a flaw in Cisco FMC and Cisco SCC Firewall Management to its Known Exploited Vulnerabilities catalog

 | 

Russian APT targets Ukraine via Zimbra XSS flaw CVE-2025-66376

 | 

DarkSword emerges as powerful iOS exploit tool in global attacks

 | 

Interlock group exploiting the CISCO FMC flaw CVE-2026-20131 36 days before disclosure

 | 

Russia establishes Vienna as key western spy hub targeting NATO

 | 

U.S. CISA adds Microsoft SharePoint and Zimbra  flaws to its Known Exploited Vulnerabilities catalog

 | 

Researchers warn of unpatched, critical Telnetd flaw affecting all versions

 | 

CVE-2026-3888: Ubuntu Desktop 24.04+ vulnerable to Root exploit

 | 

Robotic surgery firm Intuitive reports data breach after targeted phishing attack

 | 

Tracking the Iran War: A Month of Escalation and Regional Impact

 | 

EU sanctions Chinese and Iranian actors over cyberattacks on critical infrastructure

 | 

RondoDox botnet expands arsenal targeting 174 flaws, and hits 15,000 daily exploit attempts

 | 

CL-STA-1087 targets military capabilities since 2020

 | 

From Windows to macOS: ClickFix attacks shift tactics with ChatGPT-based lures

 | 

WordPress plugin

Pierluigi Paganini January 28, 2019
Hackers compromise WordPress sites via Zero-Day flaws in Total Donations plugin

Security experts at Wordfence security firms discovered WordPress Sites compromised via Zero-Day vulnerabilities in Total Donations Plugin The Total Donations WordPress plugin was abandoned by its developers for this reason security experts are recommending to delete it after they discovered multiple zero-day flaws that were exploited by threat actors. The news was reported by security […]

Pierluigi Paganini January 08, 2015
Sucuri firm discovered Backdoors relying on the Pastebin Service

The popular copy and paste website Pastebin has been leveraged by hackers to serve a backdoor to millions of users by exploiting flaws in a WordPress plugin. Malware authors have demonstrated a great inventiveness using any kind of platform and technique to control their malicious code. Security experts have detected botnet controlled via Gmail drafts, Evernote or […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

7,500+ Magento sites defaced in global hacking campaign

Hacking / March 20, 2026

Navia data breach impacts nearly 2.7 Million people

Data Breach / March 20, 2026

Apple urges iPhone users to update as Coruna and DarkSword exploit kits emerge

Security / March 20, 2026

Global law enforcement operation targets AISURU, Kimwolf, JackSkid botnet operators

Cyber Crime / March 20, 2026

French aircraft carrier Charles de Gaulle tracked via Strava activity in OPSEC failure

Intelligence / March 20, 2026