hacking

Osiris ransomware emerges, leveraging BYOVD technique to kill security tools

Osiris ransomware emerges, leveraging BYOVD technique to kill security tools

AndyC 25 January 2026

Osiris ransomware emerges, leveraging BYOVD technique to kill security tools Pierluigi Paganini January 24, 2026 Researchers identified a new Osiris...

Read More

ISO 27001:2013 vs 2022 – A Quick Comparison Guide

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog

AndyC 25 January 2026

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 24,...

Read More

New DynoWiper Malware Used in Attempted Sandworm Attack on Polish Power Sector

New DynoWiper Malware Used in Attempted Sandworm Attack on Polish Power Sector

AndyC 25 January 2026

Ravie LakshmananJan 24, 2026Malware / Critical Infrastructure The Russian nation-state hacking group known as Sandworm has been attributed to what...

Read More

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

AndyC 24 January 2026

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061) Pierluigi Paganini January 24, 2026 Critical telnetd flaw CVE-2026-24061 (CVSS 9.8)...

Read More

Security Blogs

Fortinet warns of active FortiCloud SSO bypass affecting updated devices

AndyC 24 January 2026

Fortinet warns of active FortiCloud SSO bypass affecting updated devices Pierluigi Paganini January 23, 2026 Fortinet confirmed attacks are bypassing...

Read More

U.S. CISA adds Prettier eslint-config-prettier, Vite Vitejs, Versa Concerto SD-WAN orchestration platform, and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Prettier eslint-config-prettier, Vite Vitejs, Versa Concerto SD-WAN orchestration platform, and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog

AndyC 24 January 2026

U.S. CISA adds Prettier eslint-config-prettier, Vite Vitejs, Versa Concerto SD-WAN orchestration platform, and Synacor Zimbra Collaboration Suite flaws to its Known...

Read More

Investigation underway after 72M Under Armour records surface online

Investigation underway after 72M Under Armour records surface online

AndyC 24 January 2026

Investigation underway after 72M Under Armour records surface online Pierluigi Paganini January 23, 2026 Under Armour is investigating a data...

Read More

Hackers Disable Windows Security With New Malware Attack

Hackers Disable Windows Security With New Malware Attack

AndyC 24 January 2026

Image generated by Google Gemini A sophisticated new malware campaign is systematically dismantling Windows security defenses with alarming success—and it...

Read More

ISO 27001:2013 vs 2022 – A Quick Comparison Guide

Machine learning–powered Android Trojans bypass script-based Ad Click detection

AndyC 23 January 2026

Machine learning–powered Android Trojans bypass script-based Ad Click detection Pierluigi Paganini January 22, 2026 A new Android click-fraud trojan family...

Read More

Critical SmarterMail vulnerability under attack, no CVE yet

Critical SmarterMail vulnerability under attack, no CVE yet

AndyC 23 January 2026

Critical SmarterMail vulnerability under attack, no CVE yet Pierluigi Paganini January 22, 2026 A SmarterMail flaw (WT-2026-0001) is under active...

Read More

ThreatsDay Bulletin: Pixel Zero-Click, Redis RCE, China C2s, RAT Ads, Crypto Scams & 15+ Stories

ThreatsDay Bulletin: Pixel Zero-Click, Redis RCE, China C2s, RAT Ads, Crypto Scams & 15+ Stories

AndyC 23 January 2026

Ravie LakshmananJan 22, 2026Cybersecurity / Hacking News Most of this week's threats didn't rely on new tricks. They relied on...

Read More

Security Blogs

Arctic Wolf detects surge in automated Fortinet FortiGate firewall configuration attacks

AndyC 23 January 2026

Arctic Wolf detects surge in automated Fortinet FortiGate firewall configuration attacks Pierluigi Paganini January 22, 2026 Arctic Wolf warned of...

Read More

Cisco fixed actively exploited Unified Communications zero day

Cisco fixed actively exploited Unified Communications zero day

AndyC 22 January 2026

Cisco fixed actively exploited Unified Communications zero day Pierluigi Paganini January 21, 2026 Cisco patched a critical zero-day RCE flaw...

Read More

Security Blogs

Zoom fixed critical Node Multimedia Routers flaw

AndyC 22 January 2026

Zoom fixed critical Node Multimedia Routers flaw Pierluigi Paganini January 21, 2026 Zoom addressed a critical security vulnerability, tracked as...

Read More

ISO 27001:2013 vs 2022 – A Quick Comparison Guide

ACME flaw in Cloudflare allowed attackers to reach origin servers

AndyC 22 January 2026

ACME flaw in Cloudflare allowed attackers to reach origin servers Pierluigi Paganini January 21, 2026 Cloudflare fixed a flaw in...

Read More

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

AndyC 15 April 2026

If you’ve been the victim of fraud, you’re likely already a lead on a ‘sucker list’ – and if you’re not careful, your ordeal may...

Read More

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

AndyC 15 April 2026

If you’ve been the victim of fraud, you’re likely already a lead on a ‘sucker list’ – and if you’re not careful, your ordeal may...

Read More

As breakout time accelerates, prevention-first cybersecurity takes center stage

As breakout time accelerates, prevention-first cybersecurity takes center stage

AndyC 8 April 2026

Business Security Threat actors are using AI to supercharge tried-and-tested TTPs. When attacks move this fast, cyber-defenders need to rethink their own strategy. Phil Muncaster...

Read More

Digital assets after death: Managing risks to your loved one’s digital estate

Digital assets after death: Managing risks to your loved one’s digital estate

AndyC 2 April 2026

Digital Security Fraudsters often target the accounts of the deceased or their grieving relatives. Here’s how to keep the scammers at bay. Phil Muncaster 01...

Read More

This month in security with Tony Anscombe – March 2026 edition

This month in security with Tony Anscombe – March 2026 edition

AndyC 1 April 2026

The past four weeks have seen a slew of new cybersecurity wake-up calls that showed why every organization needs a well-thought-out cyber-resilience plan 31 Mar...

Read More

RSAC 2026 wrap-up – Week in security with Tony Anscombe

RSAC 2026 wrap-up – Week in security with Tony Anscombe

AndyC 28 March 2026

This year, AI agents took the center stage – as a defensive capability, but more pressingly as a risk many organizations haven't caught up with...

Read More

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

AndyC 15 April 2026

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

AndyC 15 April 2026

Spotlight On: Stripe, a New Principal Participating Organization

Spotlight On: Stripe, a New Principal Participating Organization

AndyC 15 April 2026

Spotlight On: Stripe, a New Principal Participating Organization

Spotlight On: Stripe, a New Principal Participating Organization

AndyC 15 April 2026

Anti-Malware

Can Your Wearable Health Monitors Be Compromised?

AndyC 15 April 2026