Paganini

Germany’s national rail operator Deutsche Bahn hit by a DDoS attack

Germany’s national rail operator Deutsche Bahn hit by a DDoS attack

AndyC 20 February 2026

Germany’s national rail operator Deutsche Bahn hit by a DDoS attack Pierluigi Paganini February 19, 2026 Germany’s national rail operator,...

Read More

CISA alerts to critical auth bypass CVE-2026-1670 in Honeywell CCTVs

CISA alerts to critical auth bypass CVE-2026-1670 in Honeywell CCTVs

AndyC 20 February 2026

CISA alerts to critical auth bypass CVE-2026-1670 in Honeywell CCTVs Pierluigi Paganini February 19, 2026 CISA warns Honeywell CCTVs are...

Read More

French Ministry confirms data access to 1.2 Million bank accounts

French Ministry confirms data access to 1.2 Million bank accounts

AndyC 19 February 2026

French Ministry confirms data access to 1.2 Million bank accounts Pierluigi Paganini February 18, 2026 A hacker accessed data from...

Read More

Notepad++ patches flaw used to hijack update system

Notepad++ patches flaw used to hijack update system

AndyC 19 February 2026

Notepad++ patches flaw used to hijack update system Pierluigi Paganini February 18, 2026 Notepad++ patched a vulnerability that attackers used...

Read More

China-linked APT weaponized Dell RecoverPoint zero-day since 2024

China-linked APT weaponized Dell RecoverPoint zero-day since 2024

AndyC 19 February 2026

China-linked APT weaponized Dell RecoverPoint zero-day since 2024 Pierluigi Paganini February 18, 2026 A suspected Chinese state-linked group exploited a...

Read More

SmartLoader hackers clone Oura MCP project to spread StealC malware

SmartLoader hackers clone Oura MCP project to spread StealC malware

AndyC 18 February 2026

SmartLoader hackers clone Oura MCP project to spread StealC malware Pierluigi Paganini February 17, 2026 Hackers used a fake Oura...

Read More

Polish cybercrime Police arrest man linked to Phobos ransomware operation

Polish cybercrime Police arrest man linked to Phobos ransomware operation

AndyC 18 February 2026

Polish cybercrime Police arrest man linked to Phobos ransomware operation Pierluigi Paganini February 17, 2026 Officers from Poland’s Central Bureau...

Read More

Encrypted RCS messaging support lands in Apple’s iOS 26.4 developer build

Encrypted RCS messaging support lands in Apple’s iOS 26.4 developer build

AndyC 18 February 2026

Encrypted RCS messaging support lands in Apple’s iOS 26.4 developer build Pierluigi Paganini February 17, 2026 Apple is testing end-to-end...

Read More

Hackers steal OpenClaw configuration in emerging AI agent threat

Hackers steal OpenClaw configuration in emerging AI agent threat

AndyC 18 February 2026

Hackers steal OpenClaw configuration in emerging AI agent threat Pierluigi Paganini February 17, 2026 Researchers found an infostealer stole a...

Read More

80% of Att&Ck® Mitre Techniques Now Dedicated to Evasion and Persistence

Hackers sell stolen Eurail traveler information on dark web

AndyC 18 February 2026

Hackers sell stolen Eurail traveler information on dark web Pierluigi Paganini February 17, 2026 Eurail B.V. revealed that traveler data...

Read More

Microsoft alerts on DNS-based ClickFix variant delivering malware via nslookup

Microsoft alerts on DNS-based ClickFix variant delivering malware via nslookup

AndyC 17 February 2026

Microsoft alerts on DNS-based ClickFix variant delivering malware via nslookup Pierluigi Paganini February 16, 2026 Microsoft warns of a new...

Read More

Google fixes first actively exploited Chrome zero-day of 2026

Google fixes first actively exploited Chrome zero-day of 2026

AndyC 17 February 2026

Google fixes first actively exploited Chrome zero-day of 2026 Pierluigi Paganini February 16, 2026 Google patched Chrome zero-day CVE-2026-2441, a...

Read More

Japanese sex toys maker Tenga discloses data breach

Japanese sex toys maker Tenga discloses data breach

AndyC 17 February 2026

Japanese sex toys maker Tenga discloses data breach Pierluigi Paganini February 16, 2026 Sex toy maker Tenga says a hacker...

Read More

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 84

Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign

AndyC 16 February 2026

Malicious npm and PyPI packages Llinked to Lazarus APT fake recruiter campaign Pierluigi Paganini February 15, 2026 Researchers found malicious...

Read More

NDSS 2025 – Diffence: Fencing Membership Privacy With Diffusion Models

Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION

AndyC 16 February 2026

Security Affairs newsletter Round 563 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini February 15, 2026 A new round of...

Read More

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

AndyC 15 April 2026

If you’ve been the victim of fraud, you’re likely already a lead on a ‘sucker list’ – and if you’re not careful, your ordeal may...

Read More

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

AndyC 15 April 2026

If you’ve been the victim of fraud, you’re likely already a lead on a ‘sucker list’ – and if you’re not careful, your ordeal may...

Read More

As breakout time accelerates, prevention-first cybersecurity takes center stage

As breakout time accelerates, prevention-first cybersecurity takes center stage

AndyC 8 April 2026

Business Security Threat actors are using AI to supercharge tried-and-tested TTPs. When attacks move this fast, cyber-defenders need to rethink their own strategy. Phil Muncaster...

Read More

Digital assets after death: Managing risks to your loved one’s digital estate

Digital assets after death: Managing risks to your loved one’s digital estate

AndyC 2 April 2026

Digital Security Fraudsters often target the accounts of the deceased or their grieving relatives. Here’s how to keep the scammers at bay. Phil Muncaster 01...

Read More

This month in security with Tony Anscombe – March 2026 edition

This month in security with Tony Anscombe – March 2026 edition

AndyC 1 April 2026

The past four weeks have seen a slew of new cybersecurity wake-up calls that showed why every organization needs a well-thought-out cyber-resilience plan 31 Mar...

Read More

RSAC 2026 wrap-up – Week in security with Tony Anscombe

RSAC 2026 wrap-up – Week in security with Tony Anscombe

AndyC 28 March 2026

This year, AI agents took the center stage – as a defensive capability, but more pressingly as a risk many organizations haven't caught up with...

Read More

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

AndyC 15 April 2026

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

AndyC 15 April 2026

Spotlight On: Stripe, a New Principal Participating Organization

Spotlight On: Stripe, a New Principal Participating Organization

AndyC 15 April 2026

Spotlight On: Stripe, a New Principal Participating Organization

Spotlight On: Stripe, a New Principal Participating Organization

AndyC 15 April 2026

Anti-Malware

Can Your Wearable Health Monitors Be Compromised?

AndyC 15 April 2026