Security Blogs

Category Added in a WPeMatico Campaign

Summoning Team won Master of Pwn as Pwn2Own Ireland Rewards ,024,750

Summoning Team won Master of Pwn as Pwn2Own Ireland Rewards $1,024,750

AndyC 25 October 2025

Summoning Team won Master of Pwn as Pwn2Own Ireland Rewards $1,024,750 Pierluigi Paganini October 24, 2025 The Pwn2Own Ireland hacking...

China-linked hackers exploit patched ToolShell flaw to breach Middle East telecom

AndyC 25 October 2025

China-linked hackers exploit patched ToolShell flaw to breach Middle East telecom Pierluigi Paganini October 24, 2025 China-based threat actors exploited...

Pwn2Own Day 2: Organizers paid 2K for 56 0-days

Pwn2Own Day 2: Organizers paid $792K for 56 0-days

AndyC 24 October 2025

Pwn2Own Day 2: Organizers paid $792K for 56 0-days Pierluigi Paganini October 23, 2025 Day Two of Pwn2Own Ireland 2025...

Lazarus targets European defense firms in UAV-themed Operation DreamJob

AndyC 24 October 2025

Lazarus targets European defense firms in UAV-themed Operation DreamJob Pierluigi Paganini October 23, 2025 North Korean Lazarus hackers targeted 3...

U.S. CISA adds Motex LANSCOPE flaw to its Known Exploited Vulnerabilities catalog

AndyC 24 October 2025

U.S. CISA adds Motex LANSCOPE flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 23, 2025 U.S. Cybersecurity and Infrastructure...

Over 250 attacks hit Adobe Commerce and Magento via critical CVE-2025-54236 flaw

AndyC 24 October 2025

Over 250 attacks hit Adobe Commerce and Magento via critical CVE-2025-54236 flaw Pierluigi Paganini October 23, 2025 Hackers exploit CVE-2025-54236...

Cyberattack on Jaguar Land Rover inflicts .5B loss on UK economy

Cyberattack on Jaguar Land Rover inflicts $2.5B loss on UK economy

AndyC 24 October 2025

Cyberattack on Jaguar Land Rover inflicts $2.5B loss on UK economy Pierluigi Paganini October 23, 2025 The attack on Jaguar...

PhantomCaptcha targets Ukraine relief groups with WebSocket RAT in October 2025

AndyC 23 October 2025

PhantomCaptcha targets Ukraine relief groups with WebSocket RAT in October 2025 Pierluigi Paganini October 22, 2025 PhantomCaptcha phishing campaign hit...

Smashing Security podcast #440: How to hack a prison, and the hidden threat of online checkouts

AndyC 23 October 2025

A literal insider threat: we head to a Romanian prison where “self-service” web kiosks allowed inmates to run wild. Then...

TP-Link urges immediate updates for Omada Gateways after critical flaws discovery

AndyC 23 October 2025

TP-Link urges immediate updates for Omada Gateways after critical flaws discovery Pierluigi Paganini October 22, 2025 TP-Link warns of critical...

Cybercriminals turn on each other: the story of Lumma Stealer’s collapse

TARmageddon flaw in Async-Tar Rust library allows to smuggle extra archives when the library is processing nested TAR files

AndyC 23 October 2025

TARmageddon flaw in Async-Tar Rust library allows to smuggle extra archives when the library is processing nested TAR files Pierluigi...

Security Blogs

Summoning Team won Master of Pwn as Pwn2Own Ireland Rewards $1,024,750

China-linked hackers exploit patched ToolShell flaw to breach Middle East telecom

Pwn2Own Day 2: Organizers paid $792K for 56 0-days

Lazarus targets European defense firms in UAV-themed Operation DreamJob

U.S. CISA adds Motex LANSCOPE flaw to its Known Exploited Vulnerabilities catalog

Over 250 attacks hit Adobe Commerce and Magento via critical CVE-2025-54236 flaw

Cyberattack on Jaguar Land Rover inflicts $2.5B loss on UK economy

PhantomCaptcha targets Ukraine relief groups with WebSocket RAT in October 2025

Smashing Security podcast #440: How to hack a prison, and the hidden threat of online checkouts

TP-Link urges immediate updates for Omada Gateways after critical flaws discovery

TARmageddon flaw in Async-Tar Rust library allows to smuggle extra archives when the library is processing nested TAR files

Canada Fines Cybercrime Friendly Cryptomus $176M

Russia-linked COLDRIVER speeds up malware evolution after LOSTKEYS exposure

Japanese retailer Muji halted online sales after a ransomware attack on logistics partner

Inside the Synthient Threat Data

This month in security with Tony Anscombe – December 2025 edition

A brush with online fraud: What are brushing scams and how do I stay safe?

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

Granular attribute-based access control for context window injections

Microsoft Makes Teams ‘Secure by Default’ Starting January 2026

Randall Munroe’s XKCD ‘Inverted Catenaries’

New Year Reset: A Quick Guide to Improving Your Digital Hygiene in 2026

ESA disclosed a data breach, hackers breached external servers

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed