hacking news

ISO 27001:2013 vs 2022 – A Quick Comparison Guide

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog

AndyC 25 January 2026

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 24,...

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

AndyC 24 January 2026

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061) Pierluigi Paganini January 24, 2026 Critical telnetd flaw CVE-2026-24061 (CVSS 9.8)...

Security Blogs

Fortinet warns of active FortiCloud SSO bypass affecting updated devices

AndyC 24 January 2026

Fortinet warns of active FortiCloud SSO bypass affecting updated devices Pierluigi Paganini January 23, 2026 Fortinet confirmed attacks are bypassing...

Investigation underway after 72M Under Armour records surface online

AndyC 24 January 2026

Investigation underway after 72M Under Armour records surface online Pierluigi Paganini January 23, 2026 Under Armour is investigating a data...

Machine learning–powered Android Trojans bypass script-based Ad Click detection

AndyC 23 January 2026

Machine learning–powered Android Trojans bypass script-based Ad Click detection Pierluigi Paganini January 22, 2026 A new Android click-fraud trojan family...

Critical SmarterMail vulnerability under attack, no CVE yet

AndyC 23 January 2026

Critical SmarterMail vulnerability under attack, no CVE yet Pierluigi Paganini January 22, 2026 A SmarterMail flaw (WT-2026-0001) is under active...

Security Blogs

Arctic Wolf detects surge in automated Fortinet FortiGate firewall configuration attacks

AndyC 23 January 2026

Arctic Wolf detects surge in automated Fortinet FortiGate firewall configuration attacks Pierluigi Paganini January 22, 2026 Arctic Wolf warned of...

Cisco fixed actively exploited Unified Communications zero day

AndyC 22 January 2026

Cisco fixed actively exploited Unified Communications zero day Pierluigi Paganini January 21, 2026 Cisco patched a critical zero-day RCE flaw...

Security Blogs

Zoom fixed critical Node Multimedia Routers flaw

AndyC 22 January 2026

Zoom fixed critical Node Multimedia Routers flaw Pierluigi Paganini January 21, 2026 Zoom addressed a critical security vulnerability, tracked as...

ACME flaw in Cloudflare allowed attackers to reach origin servers

AndyC 22 January 2026

ACME flaw in Cloudflare allowed attackers to reach origin servers Pierluigi Paganini January 21, 2026 Cloudflare fixed a flaw in...

Crooks impersonate LastPass in campaign to harvest master passwords

AndyC 22 January 2026

Crooks impersonate LastPass in campaign to harvest master passwords Pierluigi Paganini January 21, 2026 Password manager LastPass warns of an...

VoidLink shows how one developer used AI to build a powerful Linux malware

AndyC 22 January 2026

VoidLink shows how one developer used AI to build a powerful Linux malware Pierluigi Paganini January 21, 2026 VoidLink is...

PDFSIDER Malware – Exploitation of DLL Side-Loading for AV and EDR Evasion

AndyC 21 January 2026

PDFSIDER Malware – Exploitation of DLL Side-Loading for AV and EDR Evasion Pierluigi Paganini January 20, 2026 Threat actors use...

Access broker caught: Jordanian pleads guilty to hacking 50 companies

AndyC 21 January 2026

Access broker caught: Jordanian pleads guilty to hacking 50 companies Pierluigi Paganini January 20, 2026 A Jordanian man pleaded guilty...

Critical TP-Link VIGI camera flaw allowed remote takeover of surveillance systems

AndyC 21 January 2026

Critical TP-Link VIGI camera flaw allowed remote takeover of surveillance systems Pierluigi Paganini January 20, 2026 TP-Link fixed a critical...

hacking news

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

Fortinet warns of active FortiCloud SSO bypass affecting updated devices

Investigation underway after 72M Under Armour records surface online

Machine learning–powered Android Trojans bypass script-based Ad Click detection

Critical SmarterMail vulnerability under attack, no CVE yet

Arctic Wolf detects surge in automated Fortinet FortiGate firewall configuration attacks

Cisco fixed actively exploited Unified Communications zero day

Zoom fixed critical Node Multimedia Routers flaw

ACME flaw in Cloudflare allowed attackers to reach origin servers

Crooks impersonate LastPass in campaign to harvest master passwords

VoidLink shows how one developer used AI to build a powerful Linux malware

PDFSIDER Malware – Exploitation of DLL Side-Loading for AV and EDR Evasion

Access broker caught: Jordanian pleads guilty to hacking 50 companies

Critical TP-Link VIGI camera flaw allowed remote takeover of surveillance systems

What cybersecurity actually does for your business

How SMBs use threat research and MDR to build a defensive edge

Protecting education: How MDR can tip the balance in favor of schools

This month in security with Tony Anscombe – February 2026 edition

Mobile app permissions (still) matter more than you may think

Faking it on the phone: How to tell if a voice call is AI or not

Donate Bitcoin to this address

Donate Ethereum to this address

What cybersecurity actually does for your business

This Week in Scams: The AI “Truman Show” Scam Draining Bank Accounts

Iran-linked MuddyWater deploys Dindoor malware against U.S. organizations

Can AI-driven security solutions fit small business budgets

The Chrome Extension Backdoor: How ‘Productivity Tools’ Became Enterprise Attack Vectors

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed