MUST READ

Australian Sugar Producer Mackay Sugar Reports Cyber Incident

 | 

Novo Nordisk Confirms Data Theft: What Attackers Took and What They Didn't

 | 

Palo Alto Warns of Exploitation of VPN Bypass Exploits (CVE-2026-0257) in PAN-OS Flaw

 | 

Supply Chain Attack Hits Popular WordPress Plugins Through Awesome Motive CDN

 | 

Infostealers, AI, and a 90% Affiliate Cut Fuel The Gentlemen group’s Rise

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 101

 | 

Security Affairs newsletter Round 581 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

Ukrainian Extradited from Ireland Pleads Guilty Over Role in Conti Ransomware Scheme

 | 

Washington Pulled the Plug on Anthropic 's Fable 5 and Mythos 5 models. The Rest of the World Is Watching.

 | 

U.S. CISA adds Oracle PeopleSoft Enterprise PeopleTools flaw to its Known Exploited Vulnerabilities catalog

 | 

Iran-Linked Handala Breached a California Water Utility. It Could Have Done Worse, and It Knows That.

 | 

U.S. CISA adds Ivanti Sentry flaw to its Known Exploited Vulnerabilities catalog and urges patching by June 14

 | 

Oracle PeopleSoft RCE Flaw Used as Zero-Day in Ongoing ShinyHunters Campaign

 | 

21,786 Home Cameras, No Password, No Warning

 | 

CVE-2026-10520 Exploited: Ivanti Sentry Gateways Compromised Shortly After Patch Release

 | 

OnyxC2 Malware-as-a-Service Offers Enterprise-Grade Data Theft

 | 

Chaotic Eclipse Strikes Again: New Zero-Day Unlocks BitLocker in Four Hours of Research

 | 

Fortinet patched a new critical FortiSandbox flaw

 | 

JDY Botnet Evolves After KV Takedown, Targets Military Networks

 | 

Russian APTs Still Exploiting Patched WinRAR Flaw CVE-2025-8088

 | 

Wordpress

Pierluigi Paganini September 26, 2013
Thousands of hacked WordPress sites used in global scale attacks

Thousands of WordPress based websites have been hacked to compose a global scale botnet that is performing powerful DDOS attacks. I start the post with recommendations, if you are a blogger using WordPress don’t waste time and update it and all installed plugins to the latest versions! Have you done it? OK, now I can explain you what it is […]

Pierluigi Paganini June 30, 2013
The Security State of WordPress’ Top 50 Plugins

Checkmarx’s report analyzed the security of the top 50 most popular plugins (in general), as well as the top 10 most popular ecommerce plugins. Today we published our report “The Security State of WordPress’ Top 50 Plugins” (no reg required). This report presents Checkmarx’s research which analyzed the security of the top 50 most popular plugins […]

Pierluigi Paganini April 14, 2013
WordPress sites under massive brute-force attack

Any owner of WordPress site is shaking causes of the threat that someone could steal its credentials, everybody would do well to ask themselves if their passwords are really strong and to make sure to don’t use as username the word “admin.” The reports published by CloudFlare and HostGator revealed a massive attack being launched against WordPress blogs […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Australian Sugar Producer Mackay Sugar Reports Cyber Incident

Data Breach / June 15, 2026

Novo Nordisk Confirms Data Theft: What Attackers Took and What They Didn't

Security / June 15, 2026

Palo Alto Warns of Exploitation of VPN Bypass Exploits (CVE-2026-0257) in PAN-OS Flaw

Security / June 15, 2026

Supply Chain Attack Hits Popular WordPress Plugins Through Awesome Motive CDN

Malware / June 15, 2026

Infostealers, AI, and a 90% Affiliate Cut Fuel The Gentlemen group’s Rise

Uncategorized / June 15, 2026