Australia’s spy chief warns of China-linked threats to critical infrastructure
Australia’s spy chief warns of China-linked threats to critical infrastructure Pierluigi Paganini November 12, 2025 Australia’s spy chief warns China-linked...
November
Weekly Update 477
12 November 2025 What. A. Week. It wasn't just the preceding weeks of technical pain as we tried to work...
Microsoft Patch Tuesday security updates for November 2025 fixed an actively exploited Windows Kernel bug
Microsoft Patch Tuesday security updates for November 2025 fixed an actively exploited Windows Kernel bug Pierluigi Paganini November 12, 2025...
SAP fixed a maximum severity flaw in SQL Anywhere Monitor
SAP fixed a maximum severity flaw in SQL Anywhere Monitor Pierluigi Paganini November 11, 2025 SAP fixed 19 security issues,...
The Limitations of Google Play Integrity API (ex SafetyNet)
Updated November 2025 This overview outlines the history and use of Google Play Integrity API and highlights some limitations....
Critical Triofox bug exploited to run malicious payloads via AV configuration
Critical Triofox bug exploited to run malicious payloads via AV configuration Pierluigi Paganini November 11, 2025 Hackers exploited Triofox flaw...
GlassWorm malware has resurfaced on the Open VSX registry
GlassWorm malware has resurfaced on the Open VSX registry Pierluigi Paganini November 10, 2025 GlassWorm malware resurfaces in Open VSX...
Agentic AI in Cybersecurity: Beyond Triage to Strategic Threat Hunting
Agentic AI in Cybersecurity: Beyond Triage to Strategic Threat Hunting Pierluigi Paganini November 10, 2025 With a 4M cybersecurity worker...
China-linked hackers target U.S. non-profit in long-term espionage campaign
China-linked hackers target U.S. non-profit in long-term espionage campaign Pierluigi Paganini November 08, 2025 A China-linked group targeted a U.S....
Cisco Unified CCX Remote Code Execution Vulnerabilities (CVE-2025-20354, CVE-2025-20358)
November 7, 2025 Tom Keech On the 6th of February 2025, two critical vulnerabilities, CVE-2025-20354 and CVE-2025-20358, were disclosed...
Clop Ransomware group claims the breach of The Washington Post
Clop Ransomware group claims the breach of The Washington Post Pierluigi Paganini November 06, 2025 The Clop Ransomware group claims...
Closing the Zero Trust Loop: ZTNA + CDR
November 6, 2025 Zero Trust has reshaped access cybersecurity. So much so, that it’s become a buzzword feared by...
Google sounds alarm on self-modifying AI malware
Google sounds alarm on self-modifying AI malware Pierluigi Paganini November 06, 2025 Google warns malware now uses AI to mutate,...
2 Billion Email Addresses Were Exposed, and We Indexed Them All in Have I Been Pwned
05 November 2025 I hate hyperbolic news headlines about data breaches, but for the "2 Billion Email Addresses" headline to...
SonicWall blames state-sponsored hackers for September security breach
SonicWall blames state-sponsored hackers for September security breach Pierluigi Paganini November 05, 2025 Cybersecurity firm SonicWall attributed the September security...
