The LA Metro Attack Wasn’t Hacktivism. It Was a State Operation With a Costume On.
The LA Metro Attack Wasn’t Hacktivism. It Was a State Operation With a Costume On. Pierluigi Paganini May 27, 2026...
Blog
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
Latin America and Europe become the target of two banking trojan campaigns that are designed to infect Windows and Android...
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
Ravie LakshmananMay 27, 2026Threat Intelligence / Supply Chain Attack Cybersecurity researchers have discovered a new malicious package on the npm...
The Next AI Security Failure May Start With a Trusted Assistant
An AI assistant does not need to “go rogue” to create a security incident. It only needs to follow the...
7-Eleven Breach: Hackers Claim 600,000 Records Stolen
A system intrusion at 7-Eleven has escalated into a major data breach. The retailer says an unauthorized third party gained...
FBI Warns: ‘Kali365’ Phishing Service Targets Microsoft 365 Accounts
A new phishing service is turning a legitimate Microsoft login process into a shortcut for account takeovers. The FBI warned...
‘Tiny11’ Gives Windows 10 Users a Risky Upgrade Path
The end of Windows 10 support is creating a hardware dilemma for older PCs. As Microsoft pushes users away from...
How cybersecurity firms took down Glassworm botnet in one shot
How cybersecurity firms took down Glassworm botnet in one shot Pierluigi Paganini May 27, 2026 Glassworm infected developers through poisoned...
Dutch Government just said no to an American firm buying the keys to their digital State
Dutch Government just said no to an American firm buying the keys to their digital State Pierluigi Paganini May 27,...
Microsoft SharePoint Has a New RCE Flaw. If You Haven’t Patched Yet, Go Do That.
Microsoft SharePoint Has a New RCE Flaw. If You Haven’t Patched Yet, Go Do That. Pierluigi Paganini May 27, 2026...
Apple’s iPhone satellite ambition goes beyond rescuing hikers
The decision not to charge for those satellite services suggests they’re just the thin end of the company’s plans for...
The AI tech job slaughter gets real
On the other hand, despite all the AI hype and hysteria, no one has yet proven that AI is, generally...
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
Ravie LakshmananMay 27, 2026Malware / Threat Intelligence CrowdStrike, in partnership with Google and the Shadowserver Foundation, has announced the simultaneous...
5 Steps to Managing Shadow AI Tools Without Slowing Down Employees
When an employee installs an AI writing assistant, connects a coding copilot to their IDE, or starts summarizing meetings with...
Gitea Vulnerability Exposes Private Container Images without Authentication
Ravie LakshmananMay 27, 2026Vulnerability / Software Security Cybersecurity researchers have disclosed a security flaw in Gitea, an open-source, self-hosted platform...