CVE-2026-23111: Linux nf_tables Flaw Enables Root Exploits
CVE-2026-23111: Linux nf_tables Flaw Enables Root Exploits Pierluigi Paganini June 09, 2026 A Linux kernel nf_tables bug lets local users...
exploits
macOS Kernel Memory Corruption Exploit
macOS Kernel Memory Corruption Exploit A group used Anthropic’s Mythos AI model to help find a kernel memory corruption vulnerability...
Zero-Day Exploit Against Windows BitLocker
Zero-Day Exploit Against Windows BitLocker It’s nasty, but it requires physical access to the computer: The exploit, named YellowKey, was...
DarkSword Malware
DarkSword Malware DarkSword is a sophisticated piece of malware—probably government designed—that targets iOS. Google Threat Intelligence Group (GTIG) has identified...
On Anthropic’s Mythos Preview and Project Glasswing
On Anthropic’s Mythos Preview and Project Glasswing The cybersecurity industry is obsessing over Anthropic’s new model, Claude Mythos Preview, and...
Fast-moving Storm-1175 uses new exploits to breach networks and drop Medusa
Fast-moving Storm-1175 uses new exploits to breach networks and drop Medusa Pierluigi Paganini April 07, 2026 China-based actor Storm-1175 runs...
New Attack Against Wi-Fi
It’s called AirSnitch: Unlike previous Wi-Fi attacks, AirSnitch exploits core features in Layers 1 and 2 and the failure...
Phishing campaign exploits OAuth redirection to bypass defenses
Phishing campaign exploits OAuth redirection to bypass defenses Pierluigi Paganini March 03, 2026 Microsoft researchers warn that threat actors abuse...
Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero
Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero Pierluigi Paganini February 25, 2026...
Operation MacroMaze: APT28 exploits webhooks for covert data exfiltration
Operation MacroMaze: APT28 exploits webhooks for covert data exfiltration Pierluigi Paganini February 24, 2026 Russia-linked APT28 targeted European entities with...
SSHStalker botnet targets Linux servers with legacy exploits and SSH scanning
SSHStalker botnet targets Linux servers with legacy exploits and SSH scanning Pierluigi Paganini February 11, 2026 A new Linux botnet,...
APT28 exploits Microsoft Office flaw in Operation Neusploit
APT28 exploits Microsoft Office flaw in Operation Neusploit Pierluigi Paganini February 03, 2026 Russia-linked APT28 is behind Operation Neusploit, exploiting...
