Pierluigi Paganini

North Korea-linked Konni APT used Google Find Hub to erase data and spy on defectors

AndyC 12 November 2025

North Korea-linked Konni APT used Google Find Hub to erase data and spy on defectors Pierluigi Paganini November 11, 2025...

U.S. CISA adds Samsung mobile devices flaw to its Known Exploited Vulnerabilities catalog

AndyC 12 November 2025

U.S. CISA adds Samsung mobile devices flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November 11, 2025 U.S. Cybersecurity and...

Critical Triofox bug exploited to run malicious payloads via AV configuration

AndyC 12 November 2025

Critical Triofox bug exploited to run malicious payloads via AV configuration Pierluigi Paganini November 11, 2025 Hackers exploited Triofox flaw...

GlassWorm malware has resurfaced on the Open VSX registry

AndyC 11 November 2025

GlassWorm malware has resurfaced on the Open VSX registry Pierluigi Paganini November 10, 2025 GlassWorm malware resurfaces in Open VSX...

Denmark and Norway investigate Yutong bus security flaw amid rising tech fears

AndyC 11 November 2025

Denmark and Norway investigate Yutong bus security flaw amid rising tech fears Pierluigi Paganini November 10, 2025 Denmark and Norway...

Agentic AI in Cybersecurity: Beyond Triage to Strategic Threat Hunting

AndyC 11 November 2025

Agentic AI in Cybersecurity: Beyond Triage to Strategic Threat Hunting Pierluigi Paganini November 10, 2025 With a 4M cybersecurity worker...

Nine NuGet packages disrupt DBs and industrial systems with time-delayed payloads

AndyC 11 November 2025

Nine NuGet packages disrupt DBs and industrial systems with time-delayed payloads Pierluigi Paganini November 10, 2025 Nine NuGet packages by...

Security Blogs

QNAP fixed multiple zero-days in its software demonstrated at Pwn2Own 2025

AndyC 10 November 2025

QNAP fixed multiple zero-days in its software demonstrated at Pwn2Own 2025 Pierluigi Paganini November 10, 2025 QNAP patched seven zero-days...

AI chat privacy at risk: Microsoft details Whisper Leak side-channel attack

AndyC 10 November 2025

AI chat privacy at risk: Microsoft details Whisper Leak side-channel attack Pierluigi Paganini November 09, 2025 Microsoft uncovered Whisper Leak,...

Policy Meets AI: Why Broken Rules Break Customer Service

Security Affairs newsletter Round 549 by Pierluigi Paganini – INTERNATIONAL EDITION

AndyC 10 November 2025

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies...

A new Italian citizen was targeted with Paragon’s Graphite spyware. We have a serious problem

AndyC 9 November 2025

A new Italian citizen was targeted with Paragon’s Graphite spyware. We have a serious problem Pierluigi Paganini November 08, 2025...

LANDFALL spyware exploited Samsung zero-day CVE-2025-21042 in Middle East attacks

AndyC 8 November 2025

LANDFALL spyware exploited Samsung zero-day CVE-2025-21042 in Middle East attacks Pierluigi Paganini November 07, 2025 A now-patched Samsung Galaxy flaw,...

Cisco fixes critical UCCX flaw allowing Root command execution

AndyC 8 November 2025

Cisco fixes critical UCCX flaw allowing Root command execution Pierluigi Paganini November 07, 2025 Cisco patched a critical flaw in...

Russia-linked APT InedibleOchotense impersonates ESET to deploy backdoor on Ukrainian systems

AndyC 8 November 2025

Russia-linked APT InedibleOchotense impersonates ESET to deploy backdoor on Ukrainian systems Pierluigi Paganini November 07, 2025 Russia-linked group InedibleOchotense used...

Clop Ransomware group claims the breach of The Washington Post

AndyC 7 November 2025

Clop Ransomware group claims the breach of The Washington Post Pierluigi Paganini November 06, 2025 The Clop Ransomware group claims...

Pierluigi Paganini

North Korea-linked Konni APT used Google Find Hub to erase data and spy on defectors

U.S. CISA adds Samsung mobile devices flaw to its Known Exploited Vulnerabilities catalog

Critical Triofox bug exploited to run malicious payloads via AV configuration

GlassWorm malware has resurfaced on the Open VSX registry

Denmark and Norway investigate Yutong bus security flaw amid rising tech fears

Agentic AI in Cybersecurity: Beyond Triage to Strategic Threat Hunting

Nine NuGet packages disrupt DBs and industrial systems with time-delayed payloads

QNAP fixed multiple zero-days in its software demonstrated at Pwn2Own 2025

AI chat privacy at risk: Microsoft details Whisper Leak side-channel attack

A new Italian citizen was targeted with Paragon’s Graphite spyware. We have a serious problem

LANDFALL spyware exploited Samsung zero-day CVE-2025-21042 in Middle East attacks

Cisco fixes critical UCCX flaw allowing Root command execution

Russia-linked APT InedibleOchotense impersonates ESET to deploy backdoor on Ukrainian systems

Credential stuffing: What it is and how to protect yourself

This month in security with Tony Anscombe – December 2025 edition

A brush with online fraud: What are brushing scams and how do I stay safe?

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Donate Bitcoin to this address

Donate Ethereum to this address

When the Marketing Graph Becomes the Target Map

Can You Afford the Total Cost of Free Java?

BodySnatcher (CVE-2025-12420): A Broken Authentication and Agentic Hijacking Vulnerability in ServiceNow

ColorTokens Achieves FedRAMP® Moderate ATO for Xshield™

Anthropic releases Cowork – Claude Code directly on your computer

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed