flaw

Russian APT targets Ukraine via Zimbra XSS flaw CVE-2025-66376

AndyC 20 March 2026

Russian APT targets Ukraine via Zimbra XSS flaw CVE-2025-66376 Pierluigi Paganini March 19, 2026 Russian APT exploits a critical XSS...

Interlock group exploiting the CISCO FMC flaw CVE-2026-20131 36 days before disclosure

AndyC 20 March 2026

Interlock group exploiting the CISCO FMC flaw CVE-2026-20131 36 days before disclosure Pierluigi Paganini March 19, 2026 The Interlock ransomware...

Researchers warn of unpatched, critical Telnetd flaw affecting all versions

AndyC 19 March 2026

Researchers warn of unpatched, critical Telnetd flaw affecting all versions Pierluigi Paganini March 18, 2026 CVE-2026-32746 is a critical flaw...

U.S. CISA adds a flaw in Wing FTP Server to its Known Exploited Vulnerabilities catalog

AndyC 17 March 2026

U.S. CISA adds a flaw in Wing FTP Server to its Known Exploited Vulnerabilities catalog Pierluigi Paganini March 16, 2026...

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog

AndyC 13 March 2026

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog Pierluigi Paganini March 12, 2026 The U.S....

Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit Exploit

AndyC 13 March 2026

Ravie LakshmananMar 12, 2026Vulnerability / Malware Apple on Wednesday backported fixes for a security flaw in iOS, iPadOS, and macOS...

Critical Nginx UI flaw CVE-2026-27944 exposes server backups

AndyC 9 March 2026

Critical Nginx UI flaw CVE-2026-27944 exposes server backups Pierluigi Paganini March 08, 2026 Nginx UI flaw CVE-2026-27944 lets attackers download...

Perplexity AI Browser Flaw Could Let Calendar Invites Access Local Files

AndyC 5 March 2026

Image: Perplexity A security flaw in Perplexity’s AI-powered Comet browser could have allowed attackers to access files on a user’s...

Android devices hit by exploited Qualcomm flaw CVE-2026-21385

AndyC 4 March 2026

Android devices hit by exploited Qualcomm flaw CVE-2026-21385 Pierluigi Paganini March 03, 2026 Google confirms that the Qualcomm Android vulnerability...

Chrome security flaw enabled spying via Gemini Live assistant

AndyC 4 March 2026

Chrome security flaw enabled spying via Gemini Live assistant Pierluigi Paganini March 03, 2026 A Google Chrome vulnerability lets malicious...

ClawJacked flaw exposed OpenClaw users to data theft

AndyC 3 March 2026

ClawJacked flaw exposed OpenClaw users to data theft Pierluigi Paganini March 02, 2026 “ClawJacked” flaw let malicious sites hijack OpenClaw...

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

AndyC 3 March 2026

Ravie LakshmananMar 02, 2026Vulnerability / Threat Intelligence A recently disclosed security flaw patched by Microsoft may have been exploited by...

5 Nations Alert: Critical Cisco Bug Used in Global Espionage Campaign

AndyC 28 February 2026

Image: Generated via Google’s Nano Banana For three years, a critical flaw sat inside Cisco’s Catalyst SD-WAN products unnoticed. Hackers...

Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access

AndyC 26 February 2026

Ravie LakshmananFeb 26, 2026Vulnerability / Network Security A newly disclosed maximum-severity security flaw in Cisco Catalyst SD-WAN Controller (formerly vSmart)...

Critical Zyxel router flaw exposed devices to remote attacks

AndyC 26 February 2026

Critical Zyxel router flaw exposed devices to remote attacks Pierluigi Paganini February 25, 2026 Zyxel fixed a critical flaw in...

flaw

Russian APT targets Ukraine via Zimbra XSS flaw CVE-2025-66376

Researchers warn of unpatched, critical Telnetd flaw affecting all versions

U.S. CISA adds a flaw in Wing FTP Server to its Known Exploited Vulnerabilities catalog

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog

Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit Exploit

Critical Nginx UI flaw CVE-2026-27944 exposes server backups

Perplexity AI Browser Flaw Could Let Calendar Invites Access Local Files

Android devices hit by exploited Qualcomm flaw CVE-2026-21385

Chrome security flaw enabled spying via Gemini Live assistant

ClawJacked flaw exposed OpenClaw users to data theft

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

5 Nations Alert: Critical Cisco Bug Used in Global Espionage Campaign

Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access

Critical Zyxel router flaw exposed devices to remote attacks

The calm before the ransom: What you see is not all there is

The calm before the ransom: What you see is not all there is

GopherWhisper: A burrow full of malware

GopherWhisper: A burrow full of malware

New NGate variant hides in a trojanized NFC payment app

New NGate variant hides in a trojanized NFC payment app

Donate Bitcoin to this address

Donate Ethereum to this address

Smashing Security podcast #464: Rockstar got hacked. The data was junk. The secrets it revealed were not

Smashing Security podcast #464: Rockstar got hacked. The data was junk. The secrets it revealed were not

Smashing Security podcast #464: Rockstar got hacked. The data was junk. The secrets it revealed were not

Smashing Security podcast #464: Rockstar got hacked. The data was junk. The secrets it revealed were not

Smashing Security podcast #464: Rockstar got hacked. The data was junk. The secrets it revealed were not

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed