Attackers launch dual campaign on GlobalProtect portals and SonicWall APIs
Attackers launch dual campaign on GlobalProtect portals and SonicWall APIs Pierluigi Paganini December 06, 2025 A hacking campaign is targeting...
Security Blogs
Category Added in a WPeMatico Campaign
Drones to Diplomas: How Russia’s Largest Private University is Linked to a $25M Essay Mill
A sprawling academic cheating network turbocharged by Google Ads that has generated nearly $25 million in revenue has curious ties...
Uniting Global Leaders Against Cyber Terrorism
Uniting Global Leaders Against Cyber Terrorism The fight against terrorism has moved to a new battlefield: the digital frontier. Last...
Maximum-severity XXE vulnerability discovered in Apache Tika
Maximum-severity XXE vulnerability discovered in Apache Tika Pierluigi Paganini December 06, 2025 A maximum severity vulnerability in Apache Tika, tracked...
JPCERT/CC Reports Widespread Exploitation of Array Networks AG Gateway Vulnerability
JPCERT/CC Reports Widespread Exploitation of Array Networks AG Gateway Vulnerability Pierluigi Paganini December 05, 2025 Array Networks AG gateways have...
BRICKSTORM backdoor exposed: CISA warns of advanced China-backed intrusions
BRICKSTORM backdoor exposed: CISA warns of advanced China-backed intrusions Pierluigi Paganini December 05, 2025 CISA details BRICKSTORM, a China-linked backdoor...
Weekly Update 481
05 December 2025 Twelve years (and one day) since launching Have I Been Pwned, it's now a service that Charlotte...
U.S. CISA adds a new an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds a new an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 04, 2025 U.S....
Marquis data breach impacted more than 780,000 individuals
Marquis data breach impacted more than 780,000 individuals Pierluigi Paganini December 04, 2025 Hackers breached fintech firm Marquis, stealing personal...
SMS Phishers Pivot to Points, Taxes, Fake Retailers
China-based phishing groups blamed for non-stop scam SMS messages about a supposed wayward package or unpaid toll fee are promoting...
Speed Without Breach: Engineering the Controls for AI-Driven Software
Speed Without Breach: Engineering the Controls for AI-Driven Software As AI accelerates software delivery, unguarded use introduces avoidable risks; secrets...
ASUS confirms vendor breach as Everest gang leaks data, claims ArcSoft and Qualcomm
ASUS confirms vendor breach as Everest gang leaks data, claims ArcSoft and Qualcomm Pierluigi Paganini December 04, 2025 ASUS confirms...
Cloudflare mitigates record 29.7 Tbps DDoS attack by the AISURU botnet
Cloudflare mitigates record 29.7 Tbps DDoS attack by the AISURU botnet Pierluigi Paganini December 04, 2025 Cloudflare blocked a record...
Smashing Security podcast #446: A hacker doxxes himself, and social engineering-as-a-service
A teenage cybercriminal posts a smug screenshot to mock a sextortion scammer… and accidentally hands over the keys to his...
What People Really Ask AI About Cybersecurity (And Why It Should Worry CISOs)
What People Really Ask AI About Cybersecurity (And Why It Should Worry CISOs) Table of Contents The New Public Forum...
