Weekly Update 491
17 February 2026 Well, the ESP32 Bluetooth bridge experiment was a complete failure. Not the radios themselves, they're actually pretty...
Security Blogs
Category Added in a WPeMatico Campaign
A security flaw at DavaIndia Pharmacy allowed attackers to access customers’ data and more
A security flaw at DavaIndia Pharmacy allowed attackers to access customers’ data and more Pierluigi Paganini February 16, 2026 A...
ShinyHunters leaked 600K+ Canada Goose customer records, but the firm denies it was breached
ShinyHunters leaked 600K+ Canada Goose customer records, but the firm denies it was breached Pierluigi Paganini February 16, 2026 ShinyHunters...
Microsoft alerts on DNS-based ClickFix variant delivering malware via nslookup
Microsoft alerts on DNS-based ClickFix variant delivering malware via nslookup Pierluigi Paganini February 16, 2026 Microsoft warns of a new...
Google fixes first actively exploited Chrome zero-day of 2026
Google fixes first actively exploited Chrome zero-day of 2026 Pierluigi Paganini February 16, 2026 Google patched Chrome zero-day CVE-2026-2441, a...
Japanese sex toys maker Tenga discloses data breach
Japanese sex toys maker Tenga discloses data breach Pierluigi Paganini February 16, 2026 Sex toy maker Tenga says a hacker...
The Promptware Kill Chain
The Promptware Kill Chain Attacks against modern generative artificial intelligence (AI) large language models (LLMs) pose a real threat. Yet...
Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign
Malicious npm and PyPI packages Llinked to Lazarus APT fake recruiter campaign Pierluigi Paganini February 15, 2026 Researchers found malicious...
Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini February 15, 2026 A new round of...
Fintech firm Figure disclosed data breach after employee phishing attack
Fintech firm Figure disclosed data breach after employee phishing attack Pierluigi Paganini February 14, 2026 Fintech firm Figure confirmed a...
U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog
U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 14,...
Suspected Russian hackers deploy CANFAIL malware against Ukraine
Suspected Russian hackers deploy CANFAIL malware against Ukraine Pierluigi Paganini February 14, 2026 A new alleged Russia-linked APT group targeted...
New threat actor UAT-9921 deploys VoidLink against enterprise sectors
New threat actor UAT-9921 deploys VoidLink against enterprise sectors Pierluigi Paganini February 13, 2026 A new threat actor, UAT-9921, uses...
Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release
Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release Pierluigi Paganini February 13, 2026 Attackers quickly targeted BeyondTrust flaw CVE-2026-1731...
Google: state-backed hackers exploit Gemini AI for cyber recon and attacks
Google: state-backed hackers exploit Gemini AI for cyber recon and attacks Pierluigi Paganini February 13, 2026 Google says nation-state actors...
