after

Askul data breach exposed over 700,000 records after ransomware attack

AndyC 18 December 2025

Askul data breach exposed over 700,000 records after ransomware attack Pierluigi Paganini December 17, 2025 Askul disclosed that an October...

Code Execution in Jupyter Notebook Exports

AndyC 17 December 2025

After our research on Cursor, in the context of developer-ecosystem security, we turn our attention to the Jupyter ecosystem. We...

Security Blogs

Hackers are exploiting critical Fortinet flaws days after patch release

AndyC 17 December 2025

Hackers are exploiting critical Fortinet flaws days after patch release Pierluigi Paganini December 16, 2025 Threat actors are exploiting two...

Privacy concerns raised as Grok AI found to be a stalker’s best friend

AWS: China-linked threat actors weaponized React2Shell hours after disclosure

AndyC 9 December 2025

AWS: China-linked threat actors weaponized React2Shell hours after disclosure Pierluigi Paganini December 08, 2025 Multiple China-linked threat actors began exploiting...

Mac identity management gets a boost, but IT still faces gaps

Cloudflare Forces Widespread Outage to Mitigate Exploitation of Maximum Severity Vulnerability in React2Shell

AndyC 9 December 2025

Just hours after a maximum severity vulnerability in React2Shell was disclosed on December 3, Amazon threat intelligence teams observed active exploitation...

OpenAI data may have been exposed after a cyberattack on analytics firm Mixpanel

AndyC 28 November 2025

OpenAI data may have been exposed after a cyberattack on analytics firm Mixpanel Pierluigi Paganini November 27, 2025 OpenAI warns...

Emergency alerts go dark after cyberattack on OnSolve CodeRED

AndyC 27 November 2025

Emergency alerts go dark after cyberattack on OnSolve CodeRED Pierluigi Paganini November 26, 2025 Cyberattack on OnSolve CodeRED disrupted emergency...

CrowdStrike denies breach after insider sent internal screenshots to hackers

AndyC 22 November 2025

CrowdStrike denies breach after insider sent internal screenshots to hackers Pierluigi Paganini November 21, 2025 CrowdStrike says an insider shared...

NDSS 2025 – Hitchhiking Vaccine: Enhancing Botnet Remediation With Remote Code Deployment Reuse

Security Advisory: Salesforce Gainsight Incident

AndyC 21 November 2025

On November 19, 2025 at 8:00 PM, Salesforce issued a security advisory after detecting unusual activity associated with Gainsight-published...

Smashing Security podcast #444: We’re sorry. Wait, did a company actually say that?

AndyC 21 November 2025

Stop the press – a company has actually said “sorry” after a data breach, and hotels are helping hackers phish...

Sue The Hackers – Google Sues Over Phishing as a Service

AndyC 20 November 2025

When something goes wrong, after exhausting all other possible alternatives, a company may go to its lawyer with the...

Pennsylvania Office of the Attorney General (OAG) confirms data breach after August attack

AndyC 19 November 2025

Pennsylvania Office of the Attorney General (OAG) confirms data breach after August attack Pierluigi Paganini November 18, 2025 The Pennsylvania...

DoorDash data breach exposes personal info after social engineering attack

AndyC 19 November 2025

DoorDash data breach exposes personal info after social engineering attack Pierluigi Paganini November 18, 2025 DoorDash says a social engineering...

AT&T’s 7M Breach Settlement Deadline Nears — Are You Entitled to a Payout?

AT&T’s $177M Breach Settlement Deadline Nears — Are You Entitled to a Payout?

AndyC 18 November 2025

Generated with Google Gemini. AT&T is preparing to pay out $177 million after two massive data breaches exposed sensitive information...

A Single Bug in Mobile Apps Can Cost You Millions! Protect with Secure Code Review!

AndyC 16 November 2025

A leading banking app was forced into a three-day shutdown after attackers exploited a small coding oversight that granted...

after

Askul data breach exposed over 700,000 records after ransomware attack

Code Execution in Jupyter Notebook Exports

Hackers are exploiting critical Fortinet flaws days after patch release

AWS: China-linked threat actors weaponized React2Shell hours after disclosure

OpenAI data may have been exposed after a cyberattack on analytics firm Mixpanel

Emergency alerts go dark after cyberattack on OnSolve CodeRED

CrowdStrike denies breach after insider sent internal screenshots to hackers

Security Advisory: Salesforce Gainsight Incident

Smashing Security podcast #444: We’re sorry. Wait, did a company actually say that?

Pennsylvania Office of the Attorney General (OAG) confirms data breach after August attack

A Single Bug in Mobile Apps Can Cost You Millions! Protect with Secure Code Review!

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

Google Chrome Extension is Intercepting Millions of Users’ AI Chats

How Passkeys Work (Explained Simply)

Merriam-Webster names “slop” the word of the year 2025

Why “Strong Passwords” Aren’t Enough Anymore—and What to Do Instead

Askul data breach exposed over 700,000 records after ransomware attack

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed