Paganini

Security Blogs

Attackers hijack Axios npm account to spread RAT malware

AndyC 1 April 2026

Attackers hijack Axios npm account to spread RAT malware Pierluigi Paganini March 31, 2026 Threat actors hijacked the npm account...

Iranian hackers breach FBI director’s personal email, and post his CV and photos online

Qilin Ransomware allegedly breached chemical manufacturer giant Dow Inc

AndyC 1 April 2026

Qilin Ransomware allegedly breached chemical manufacturer giant Dow Inc Pierluigi Paganini March 31, 2026 Qilin ransomware claims a breach of...

Security Blogs

Critical Fortinet FortiClient EMS flaw exploited for Remote Code Execution

AndyC 31 March 2026

Critical Fortinet FortiClient EMS flaw exploited for Remote Code Execution Pierluigi Paganini March 30, 2026 Attackers are exploiting a critical...

ShinyHunters claims the hack of the European Commission

AndyC 29 March 2026

ShinyHunters claims the hack of the European Commission Pierluigi Paganini March 28, 2026 The European Commission has allegedly been breached...

New AITM phishing wave hijacks TikTok Business accounts

AndyC 28 March 2026

New AITM phishing wave hijacks TikTok Business accounts Pierluigi Paganini March 27, 2026 A new AITM phishing campaign targets TikTok...

CISA and BSI warn orgs of critical PTC Windchill and FlexPLM flaw

AndyC 28 March 2026

CISA and BSI warn orgs of critical PTC Windchill and FlexPLM flaw Pierluigi Paganini March 27, 2026 CISA warns of...

Reflecting on Your Tier Model: CVE-2025-33073 and the One-Hop Problem

China-linked Red Menshen APT deploys stealthy BPFDoor implants in telecom networks

AndyC 27 March 2026

China-linked Red Menshen APT deploys stealthy BPFDoor implants in telecom networks Pierluigi Paganini March 27, 2026 China-linked Red Menshen APT...

Coruna exploit reveals evolution of Triangulation iOS exploitation framework

AndyC 27 March 2026

Coruna exploit reveals evolution of Triangulation iOS exploitation framework Pierluigi Paganini March 26, 2026 Kaspersky found Coruna iOS exploits reuse...

Researchers uncover WebRTC skimmer bypassing traditional defenses

AndyC 27 March 2026

Researchers uncover WebRTC skimmer bypassing traditional defenses Pierluigi Paganini March 26, 2026 Researchers found a new skimmer using WebRTC to...

Russian national convicted for running botnet used in attacks on U.S. firms

AndyC 26 March 2026

Russian national convicted for running botnet used in attacks on U.S. firms Pierluigi Paganini March 25, 2026 A Russian hacker...

The Dark Side of DDoS: Why DDoS Downtime is Harder to Prevent

Patch now: TP-Link Archer NX routers vulnerable to firmware takeover

AndyC 26 March 2026

Patch now: TP-Link Archer NX routers vulnerable to firmware takeover Pierluigi Paganini March 25, 2026 TP-Link patched a high severity...

Recent Navia data breach impacts HackerOne employee data

AndyC 26 March 2026

Recent Navia data breach impacts HackerOne employee data Pierluigi Paganini March 25, 2026 A Navia breach exposed personal data of...

Cybercrime group Lapsus$ claims the hack of pharma giant AstraZeneca

AndyC 26 March 2026

Cybercrime group Lapsus$ claims the hack of pharma giant AstraZeneca Pierluigi Paganini March 25, 2026 Cybercrime group Lapsus$ claims it...

Malicious LiteLLM versions linked to TeamPCP supply chain attack

AndyC 26 March 2026

Malicious LiteLLM versions linked to TeamPCP supply chain attack Pierluigi Paganini March 25, 2026 TeamPCP backdoored LiteLLM v1.82.7–1.82.8, likely via...

81-month sentence for Russian hacker behind major ransomware campaigns

AndyC 25 March 2026

81-month sentence for Russian hacker behind major ransomware campaigns Pierluigi Paganini March 24, 2026 U.S. sentences Russian hacker Aleksei Volkov...