hacking news

Why Third-Party Access Remains the Weak Link in Supply Chain Security

AndyC 24 December 2025

Why Third-Party Access Remains the Weak Link in Supply Chain Security Pierluigi Paganini December 23, 2025 Attackers exploited a supply...

10 Android tips you shouldn’t miss from 2025

U.S. CISA adds a flaw in Digiever DS-2105 Pro to its Known Exploited Vulnerabilities catalog

AndyC 24 December 2025

U.S. CISA adds a flaw in Digiever DS-2105 Pro to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 23, 2025...

NDSS 2025 – ReDAN: An Empirical Study On Remote DoS Attacks Against NAT Networks

Romanian Waters confirms cyberattack, critical water operations unaffected

AndyC 23 December 2025

Romanian Waters confirms cyberattack, critical water operations unaffected Pierluigi Paganini December 22, 2025 Romania’s national water management authority, Romanian Waters,...

Ukrainian hacker pleads guilty to Nefilim Ransomware attacks in U.S.

AndyC 23 December 2025

Ukrainian hacker pleads guilty to Nefilim Ransomware attacks in U.S. Pierluigi Paganini December 22, 2025 Ukrainian Artem Stryzhak (35) pleaded...

Infy Returns: Iran-linked hacking group shows renewed activity

AndyC 23 December 2025

Infy Returns: Iran-linked hacking group shows renewed activity Pierluigi Paganini December 22, 2025 Researchers report renewed activity by Iran-linked Infy...

University of Sydney discloses a data breach impacting 27,000 people

AndyC 23 December 2025

University of Sydney discloses a data breach impacting 27,000 people Pierluigi Paganini December 22, 2025 Hackers stole personal data of...

Waymo suspends service after power outage hit San Francisco

AndyC 22 December 2025

Waymo suspends service after power outage hit San Francisco Pierluigi Paganini December 22, 2025 Waymo temporarily halted its San Francisco...

Security Affairs newsletter Round 555 by Pierluigi Paganini – INTERNATIONAL EDITION

AndyC 22 December 2025

Security Affairs newsletter Round 555 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini December 21, 2025 A new round of...

Massive Android botnet Kimwolf infects millions, strikes with DDoS

AndyC 22 December 2025

Massive Android botnet Kimwolf infects millions, strikes with DDoS Pierluigi Paganini December 21, 2025 The Kimwolf Android botnet has infected...

ATM Jackpotting ring busted: 54 indicted by DoJ

AndyC 21 December 2025

ATM Jackpotting ring busted: 54 indicted by DoJ Pierluigi Paganini December 20, 2025 The U.S. Department of Justice has indicted...

U.S. CISA adds a flaw in WatchGuard Fireware OS to its Known Exploited Vulnerabilities catalog

AndyC 21 December 2025

U.S. CISA adds a flaw in WatchGuard Fireware OS to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 20, 2025...

Surge of OAuth Device Code Phishing Attacks Targets M365 Accounts

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

AndyC 20 December 2025

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says Pierluigi Paganini December 20, 2025...

ASRock, ASUS, GIGABYTE, MSI Boards vulnerable to pre-boot memory attacks

AndyC 20 December 2025

ASRock, ASUS, GIGABYTE, MSI Boards vulnerable to pre-boot memory attacks Pierluigi Paganini December 19, 2025 A new UEFI flaw exposes...

China-linked APT UAT-9686 is targeting Cisco Secure Email Gateway and Secure Email and Web Manager

AndyC 20 December 2025

China-linked APT UAT-9686 is targeting Cisco Secure Email Gateway and Secure Email and Web Manager Pierluigi Paganini December 19, 2025...

Security Blogs

Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw

AndyC 19 December 2025

Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw Pierluigi Paganini December 18, 2025 Hewlett Packard Enterprise (HPE) fixed a...

hacking news

Why Third-Party Access Remains the Weak Link in Supply Chain Security

U.S. CISA adds a flaw in Digiever DS-2105 Pro to its Known Exploited Vulnerabilities catalog

Romanian Waters confirms cyberattack, critical water operations unaffected

Ukrainian hacker pleads guilty to Nefilim Ransomware attacks in U.S.

University of Sydney discloses a data breach impacting 27,000 people

Waymo suspends service after power outage hit San Francisco

Massive Android botnet Kimwolf infects millions, strikes with DDoS

ATM Jackpotting ring busted: 54 indicted by DoJ

U.S. CISA adds a flaw in WatchGuard Fireware OS to its Known Exploited Vulnerabilities catalog

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

ASRock, ASUS, GIGABYTE, MSI Boards vulnerable to pre-boot memory attacks

China-linked APT UAT-9686 is targeting Cisco Secure Email Gateway and Secure Email and Web Manager

Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw

This month in security with Tony Anscombe – December 2025 edition

A brush with online fraud: What are brushing scams and how do I stay safe?

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

CISA Flags Microsoft Office and HPE OneView Bugs as Actively Exploited

Quantum-Durable Integrity Verification for Machine-to-Machine Model Contexts

Ni8mare flaw gives unauthenticated control of n8n instances

Smashing Security podcast #449: How to scam someone in seven days

How scalable are secret management methods for NHIs?

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed