Dissecting a new malspam chain delivering Purelogs infostealer
Dissecting a new malspam chain delivering Purelogs infostealer Pierluigi Paganini November 26, 2025 The AISI Research Center’s Cybersecurity Observatory publishes...
Malware
RomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent Malware
Nov 26, 2025Ravie LakshmananMalware / Cyber Espionage The threat actors behind a malware family known as RomCom targeted a U.S.-based...
Influencers in the crosshairs: How cybercriminals are targeting content creators
Social Media Social media influencers can provide reach and trust for scams and malware distribution. Robust account protection is key...
Morphisec warns StealC V2 malware spread through weaponized blender files
Morphisec warns StealC V2 malware spread through weaponized blender files Pierluigi Paganini November 25, 2025 StealC V2 spread via malicious...
CISA: Spyware and RATs used to target WhatsApp and Signal Users
CISA: Spyware and RATs used to target WhatsApp and Signal Users Pierluigi Paganini November 25, 2025 CISA warns that threat...
Attackers deliver ShadowPad via newly patched WSUS RCE bug
Attackers deliver ShadowPad via newly patched WSUS RCE bug Pierluigi Paganini November 24, 2025 Attackers exploited a patched WSUS flaw...
Operation Endgame disrupts Rhadamanthys information-stealing malware
International cybercrime-fighting agencies, co-ordinated by Europol, took down over 1000 servers and seized 20 domains earlier this month as part...
Security Affairs newsletter Round 551 by Pierluigi Paganini – INTERNATIONAL EDITION
This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies...
BadAudio malware: how APT24 scaled its cyberespionage through supply chain attacks
BadAudio malware: how APT24 scaled its cyberespionage through supply chain attacks Pierluigi Paganini November 22, 2025 APT24 used supply chain...
SEC Dismisses Remains of Lawsuit Against SolarWinds and Its CISO
The Securities and Exchange Commission (SEC) this week dismissed what remained of its two-year-old, high-profile lawsuit against SolarWinds and...
Massive data leak hits Italian railway operator Ferrovie dello Stato via Almaviva hack
Massive data leak hits Italian railway operator Ferrovie dello Stato via Almaviva hack Pierluigi Paganini November 21, 2025 Ferrovie dello...
Sturnus: New Android banking trojan targets WhatsApp, Telegram, and Signal
Sturnus: New Android banking trojan targets WhatsApp, Telegram, and Signal Pierluigi Paganini November 20, 2025 The Android trojan Sturnus targets...
WhatsApp compromise leads to Astaroth deployment
Sophos analysts are investigating a persistent, multi-stage malware distribution campaign targeting WhatsApp users in Brazil. First observed on September 24,...
Smashing Security podcast #444: We’re sorry. Wait, did a company actually say that?
Stop the press – a company has actually said “sorry” after a data breach, and hotels are helping hackers phish...
Operation WrtHug hijacks 50,000+ ASUS routers to build a global botnet
Operation WrtHug hijacks 50,000+ ASUS routers to build a global botnet Pierluigi Paganini November 19, 2025 Operation WrtHug hijacks tens...
