CVE-2025-22225 in VMware ESXi now used in active ransomware attacks
CVE-2025-22225 in VMware ESXi now used in active ransomware attacks Pierluigi Paganini February 04, 2026 Ransomware groups now exploit VMware...
Security Blogs
Category Added in a WPeMatico Campaign
Taiwanese operator of Incognito Market sentenced to 30 years over $105M darknet drug ring
Taiwanese operator of Incognito Market sentenced to 30 years over $105M darknet drug ring Pierluigi Paganini February 04, 2026 A...
Smashing Security podcast #453: The Epstein Files didn’t hide this hacker very well
Supposedly redacted Jeffrey Epstein files can still reveal exactly who they’re talking about – especially when AI, LinkedIn, and a...
Paris raid on X focuses on child abuse material allegations
Paris raid on X focuses on child abuse material allegations Pierluigi Paganini February 04, 2026 French prosecutors raided X offices...
GreyNoise tracks massive Citrix Gateway recon using 63K+ residential proxies and AWS
GreyNoise tracks massive Citrix Gateway recon using 63K+ residential proxies and AWS Pierluigi Paganini February 04, 2026 GreyNoise spotted a...
Microsoft: Info-Stealing malware expands from Windows to macOS
Microsoft: Info-Stealing malware expands from Windows to macOS Pierluigi Paganini February 04, 2026 Microsoft warns info-stealing attacks are expanding from...
Weekly Update 489
04 February 2026 This week I'm in Hong Kong, and the day after recording, I gave the talk shown in...
U.S. CISA adds SolarWinds Web Help Desk, Sangoma FreePBX, and GitLab flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds SolarWinds Web Help Desk, Sangoma FreePBX, and GitLab flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February...
Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure
Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure Pierluigi Paganini February 03, 2026 Hackers exploit...
APT28 exploits Microsoft Office flaw in Operation Neusploit
APT28 exploits Microsoft Office flaw in Operation Neusploit Pierluigi Paganini February 03, 2026 Russia-linked APT28 is behind Operation Neusploit, exploiting...
Notepad++ infrastructure hack likely tied to China-nexus APT Lotus Blossom
Notepad++ infrastructure hack likely tied to China-nexus APT Lotus Blossom Pierluigi Paganini February 03, 2026 Rapid7 researchers say the Notepad++...
AI Didnt Break Cybersecurity
AI Didnt Break Cybersecurity I keep hearing the same sentence lately, from boards, executives, and even seasoned security leaders: “AI...
MoltBot Skills exploited to distribute 400+ malware packages in days
MoltBot Skills exploited to distribute 400+ malware packages in days Pierluigi Paganini February 02, 2026 Over 400 malicious OpenClaw packages...
Panera Bread breach affected 5.1 Million accounts, HIBP Confirms
Panera Bread breach affected 5.1 Million accounts, HIBP Confirms Pierluigi Paganini February 02, 2026 Have I Been Pwned says Panera...
Hackers exploit unsecured MongoDB instances to wipe data and demand ransom
Hackers exploit unsecured MongoDB instances to wipe data and demand ransom Pierluigi Paganini February 02, 2026 Over 1,400 exposed MongoDB...
