Askul data breach exposed over 700,000 records after ransomware attack
Askul data breach exposed over 700,000 records after ransomware attack Pierluigi Paganini December 17, 2025 Askul disclosed that an October...
attack
A cyber attack hit Petróleos de Venezuela (PDVSA) disrupting export operations
A cyber attack hit Petróleos de Venezuela (PDVSA) disrupting export operations Pierluigi Paganini December 16, 2025 A cyber attack hit...
How to Streamline Zero Trust Using the Shared Signals Framework
Zero Trust helps organizations shrink their attack surface and respond to threats faster, but many still struggle to implement it...
Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails
Dec 05, 2025Ravie LakshmananEmail Security / Threat Research A new agentic browser attack targeting Perplexity's Comet browser that's capable of...
Cloudflare mitigates record 29.7 Tbps DDoS attack by the AISURU botnet
Cloudflare mitigates record 29.7 Tbps DDoS attack by the AISURU botnet Pierluigi Paganini December 04, 2025 Cloudflare blocked a record...
North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware
Nov 28, 2025Ravie LakshmananSupply Chain Attack / Malware The North Korean threat actors behind the Contagious Interview campaign have continued...
Shai-Hulud v2 Campaign Spreads From npm to Maven, Exposing Thousands of Secrets
The second wave of the Shai-Hulud supply chain attack has spilled over to the Maven ecosystem after compromising more than...
Shai-Hulud 2.0: over 14,000 secrets exposed
TL;DR: A new wave of the Shai-Hulud supply chain attack targeting NPM packages, dubbed “The Second Coming” by the...
AI attack agents are accelerators, not autonomous weapons: the Anthropic attack
AI attack agents are accelerators, not autonomous weapons: the Anthropic attack Pierluigi Paganini November 24, 2025 Why today’s AI attack...
New FortiWeb zero-day CVE-2025-58034 under attack patched by Fortinet
New FortiWeb zero-day CVE-2025-58034 under attack patched by Fortinet Pierluigi Paganini November 19, 2025 Fortinet patched a new FortiWeb zero-day,...
Pennsylvania Office of the Attorney General (OAG) confirms data breach after August attack
Pennsylvania Office of the Attorney General (OAG) confirms data breach after August attack Pierluigi Paganini November 18, 2025 The Pennsylvania...
Microsoft Fends Off Massive DDoS Attack by Aisuru Botnet Operators
Microsoft late last month was the victim of a massive distributed denial-of-service (DDoS) attack by threat actors using the...
DoorDash data breach exposes personal info after social engineering attack
DoorDash data breach exposes personal info after social engineering attack Pierluigi Paganini November 18, 2025 DoorDash says a social engineering...
Critical FortiWeb flaw under attack, allowing complete compromise
Critical FortiWeb flaw under attack, allowing complete compromise Pierluigi Paganini November 14, 2025 A Fortinet FortiWeb auth-bypass flaw is being...
How AI-Generated Content is Fueling Next-Gen Phishing and BEC Attacks: Detection and Defense Strategies
With over 25 years of experience in cybersecurity and hundreds of incident response cases across UK businesses, I’ve witnessed the most dramatic shift in attack sophistication to date. AI phishing attacks have fundamentally reshaped the threat landscape, with attackers now using natural language models to craft emails that even experienced...
