IT Information Security

Apple issues emergency fixes for Coruna flaws in older iOS versions

Apple issues emergency fixes for Coruna flaws in older iOS versions

AndyC 13 March 2026

Apple issues emergency fixes for Coruna flaws in older iOS versions Pierluigi Paganini March 12, 2026 Apple released iOS 16.7.15...

Read More

The Prompt Injection Peril and Why AI Agents Are Your Network’s Newest Vulnerability

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

AndyC 13 March 2026

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites Pierluigi Paganini March 12, 2026 An unauthenticated SQL injection...

Read More

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog

AndyC 13 March 2026

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog Pierluigi Paganini March 12, 2026 The U.S....

Read More

Bell Ambulance data breach impacted over 238,000 people

Bell Ambulance data breach impacted over 238,000 people

AndyC 12 March 2026

Bell Ambulance data breach impacted over 238,000 people Pierluigi Paganini March 12, 2026 Bell Ambulance confirms a February 2025 breach...

Read More

Pro-Palestinian hacktivist group Handala targets Stryker in global disruption

Pro-Palestinian hacktivist group Handala targets Stryker in global disruption

AndyC 12 March 2026

Pro-Palestinian hacktivist group Handala targets Stryker in global disruption Pierluigi Paganini March 11, 2026 Pro-Palestinian hacktivist group Handala claims a...

Read More

BeatBanker malware targets Android users with banking Trojan and crypto miner

BeatBanker malware targets Android users with banking Trojan and crypto miner

AndyC 12 March 2026

BeatBanker malware targets Android users with banking Trojan and crypto miner Pierluigi Paganini March 11, 2026 BeatBanker Android malware spreads...

Read More

Security Blogs

Hewlett Packard Enterprise fixes critical authentication bypass in Aruba AOS-CX

AndyC 12 March 2026

Hewlett Packard Enterprise fixes critical authentication bypass in Aruba AOS-CX Pierluigi Paganini March 11, 2026 Hewlett Packard Enterprise (HPE) fixed...

Read More

KadNap bot compromises 14,000+ devices to route malicious traffic

KadNap bot compromises 14,000+ devices to route malicious traffic

AndyC 12 March 2026

KadNap bot compromises 14,000+ devices to route malicious traffic Pierluigi Paganini March 11, 2026 KadNap malware infects 14,000+ edge devices,...

Read More

Microsoft Patch Tuesday security updates for March 2026 fixed 84 bugs

Microsoft Patch Tuesday security updates for March 2026 fixed 84 bugs

AndyC 11 March 2026

Microsoft Patch Tuesday security updates for March 2026 fixed 84 bugs Pierluigi Paganini March 10, 2026 Microsoft Patch Tuesday security...

Read More

Security Blogs

Attackers exploit FortiGate devices to access sensitive network information

AndyC 11 March 2026

Attackers exploit FortiGate devices to access sensitive network information Pierluigi Paganini March 10, 2026 Attackers are exploiting FortiGate devices to...

Read More

APT28 conducts long-term espionage on Ukrainian forces using custom malware

APT28 conducts long-term espionage on Ukrainian forces using custom malware

AndyC 11 March 2026

APT28 conducts long-term espionage on Ukrainian forces using custom malware Pierluigi Paganini March 10, 2026 APT28 used BEARDSHELL and COVENANT...

Read More

Threat actors use custom AuraInspector to harvest data from Salesforce systems

Threat actors use custom AuraInspector to harvest data from Salesforce systems

AndyC 11 March 2026

Threat actors use custom AuraInspector to harvest data from Salesforce systems Pierluigi Paganini March 10, 2026 Attackers are mass-scanning Salesforce...

Read More

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Ivanti EPM, SolarWinds, and Omnissa Workspace One flaws to its Known Exploited Vulnerabilities catalog

AndyC 11 March 2026

U.S. CISA adds Ivanti EPM, SolarWinds, and Omnissa Workspace One flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini March...

Read More

Ericsson US confirms breach after third-party provider attack

Ericsson US confirms breach after third-party provider attack

AndyC 11 March 2026

Ericsson US confirms breach after third-party provider attack Pierluigi Paganini March 10, 2026 Ericsson US reports a data breach after...

Read More

Prevention is the Only Cloud Security Strategy That Works

Law enforcement disrupted Tycoon 2FA phishing-as-a-service platform

AndyC 11 March 2026

Law enforcement disrupted Tycoon 2FA phishing-as-a-service platform Pierluigi Paganini March 10, 2026 Authorities disrupted the Tycoon 2FA phishing-as-a-service platform used...

Read More

BTMOB: A stealthy RAT burrowing deep into Android devices

BTMOB: A stealthy RAT burrowing deep into Android devices

AndyC 27 May 2026

The malware pairs remote access capabilities with ready-made campaign tools, lowering the barrier for full device compromise Daniel Cunha Barbosa 26 May 2026 • ,...

Read More

Foul play: Fake FIFA websites target soccer fans looking for World Cup tickets, merchandise

Foul play: Fake FIFA websites target soccer fans looking for World Cup tickets, merchandise

AndyC 26 May 2026

Digital Security Watch out for bogus World Cup websites that mimic official ticket and merchandise flows to steal money and personal data Christian Ali Bravo...

Read More

Foul play: Fake FIFA websites target soccer fans looking for World Cup tickets, merchandise

Foul play: Fake FIFA websites target soccer fans looking for World Cup tickets, merchandise

AndyC 26 May 2026

Digital Security Watch out for bogus World Cup websites that mimic official ticket and merchandise flows to steal money and personal data Christian Ali Bravo...

Read More

Webworm: New burrowing techniques

Webworm: New burrowing techniques

AndyC 26 May 2026

ESET researchers analyzed the 2025 activity of Webworm, a China-aligned APT group that started out targeting organizations in Asia, but has recently shifted its focus...

Read More

Webworm: New burrowing techniques

Webworm: New burrowing techniques

AndyC 26 May 2026

ESET researchers analyzed the 2025 activity of Webworm, a China-aligned APT group that started out targeting organizations in Asia, but has recently shifted its focus...

Read More

The quest for greater tech independence

The quest for greater tech independence

AndyC 26 May 2026

The Trump administration’s shift in tone and approach toward traditional allies has understandably unsettled many nations, raising doubts about U.S. reliability and concerns over dependence...

Read More

Smashing Security podcast #469: What your Oura ring won’t tell you

Smashing Security podcast #469: What your Oura ring won’t tell you

AndyC 31 May 2026

Smashing Security podcast #469: What your Oura ring won’t tell you

Smashing Security podcast #469: What your Oura ring won’t tell you

AndyC 31 May 2026

Smashing Security podcast #469: What your Oura ring won’t tell you

Smashing Security podcast #469: What your Oura ring won’t tell you

AndyC 31 May 2026

Smashing Security podcast #469: What your Oura ring won’t tell you

Smashing Security podcast #469: What your Oura ring won’t tell you

AndyC 31 May 2026

Smashing Security podcast #469: What your Oura ring won’t tell you

Smashing Security podcast #469: What your Oura ring won’t tell you

AndyC 31 May 2026