Pierluigi

The Prompt Injection Peril and Why AI Agents Are Your Network’s Newest Vulnerability

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

AndyC 13 March 2026

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites Pierluigi Paganini March 12, 2026 An unauthenticated SQL injection...

ENISA Technical Advisory on Secure Package Managers: Essential DevSecOps Guidance

AndyC 13 March 2026

ENISA Technical Advisory on Secure Package Managers: Essential DevSecOps Guidance Pierluigi Paganini March 12, 2026 ENISA’s first Technical Advisory on...

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog

AndyC 13 March 2026

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog Pierluigi Paganini March 12, 2026 The U.S....

Bell Ambulance data breach impacted over 238,000 people

AndyC 12 March 2026

Bell Ambulance data breach impacted over 238,000 people Pierluigi Paganini March 12, 2026 Bell Ambulance confirms a February 2025 breach...

Pro-Palestinian hacktivist group Handala targets Stryker in global disruption

AndyC 12 March 2026

Pro-Palestinian hacktivist group Handala targets Stryker in global disruption Pierluigi Paganini March 11, 2026 Pro-Palestinian hacktivist group Handala claims a...

Security Blogs

Hewlett Packard Enterprise fixes critical authentication bypass in Aruba AOS-CX

AndyC 12 March 2026

Hewlett Packard Enterprise fixes critical authentication bypass in Aruba AOS-CX Pierluigi Paganini March 11, 2026 Hewlett Packard Enterprise (HPE) fixed...

KadNap bot compromises 14,000+ devices to route malicious traffic

AndyC 12 March 2026

KadNap bot compromises 14,000+ devices to route malicious traffic Pierluigi Paganini March 11, 2026 KadNap malware infects 14,000+ edge devices,...

Microsoft Patch Tuesday security updates for March 2026 fixed 84 bugs

AndyC 11 March 2026

Microsoft Patch Tuesday security updates for March 2026 fixed 84 bugs Pierluigi Paganini March 10, 2026 Microsoft Patch Tuesday security...

Security Blogs

Attackers exploit FortiGate devices to access sensitive network information

AndyC 11 March 2026

Attackers exploit FortiGate devices to access sensitive network information Pierluigi Paganini March 10, 2026 Attackers are exploiting FortiGate devices to...

APT28 conducts long-term espionage on Ukrainian forces using custom malware

AndyC 11 March 2026

APT28 conducts long-term espionage on Ukrainian forces using custom malware Pierluigi Paganini March 10, 2026 APT28 used BEARDSHELL and COVENANT...

Threat actors use custom AuraInspector to harvest data from Salesforce systems

AndyC 11 March 2026

Threat actors use custom AuraInspector to harvest data from Salesforce systems Pierluigi Paganini March 10, 2026 Attackers are mass-scanning Salesforce...

Ericsson US confirms breach after third-party provider attack

AndyC 11 March 2026

Ericsson US confirms breach after third-party provider attack Pierluigi Paganini March 10, 2026 Ericsson US reports a data breach after...

Prevention is the Only Cloud Security Strategy That Works

Law enforcement disrupted Tycoon 2FA phishing-as-a-service platform

AndyC 11 March 2026

Law enforcement disrupted Tycoon 2FA phishing-as-a-service platform Pierluigi Paganini March 10, 2026 Authorities disrupted the Tycoon 2FA phishing-as-a-service platform used...

FBI alert: scammers target zoning permit applicants

AndyC 10 March 2026

FBI alert: scammers target zoning permit applicants Pierluigi Paganini March 09, 2026 The FBI warns of phishing attacks where crooks...

Meta’s AI Safety Chief Couldn’t Stop Her Own Agent. What Makes You Think You Can Stop Yours?

Russia-linked hackers target Signal, WhatsApp of officials globally

AndyC 10 March 2026

Russia-linked hackers target Signal, WhatsApp of officials globally Pierluigi Paganini March 09, 2026 Russia-linked hackers are targeting Signal and WhatsApp...

Pierluigi

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

ENISA Technical Advisory on Secure Package Managers: Essential DevSecOps Guidance

U.S. CISA adds a flaw in n8n to its Known Exploited Vulnerabilities catalog

Bell Ambulance data breach impacted over 238,000 people

Hewlett Packard Enterprise fixes critical authentication bypass in Aruba AOS-CX

KadNap bot compromises 14,000+ devices to route malicious traffic

Microsoft Patch Tuesday security updates for March 2026 fixed 84 bugs

Attackers exploit FortiGate devices to access sensitive network information

APT28 conducts long-term espionage on Ukrainian forces using custom malware

Threat actors use custom AuraInspector to harvest data from Salesforce systems

Ericsson US confirms breach after third-party provider attack

Law enforcement disrupted Tycoon 2FA phishing-as-a-service platform

FBI alert: scammers target zoning permit applicants

Russia-linked hackers target Signal, WhatsApp of officials globally

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

As breakout time accelerates, prevention-first cybersecurity takes center stage

Digital assets after death: Managing risks to your loved one’s digital estate

This month in security with Tony Anscombe – March 2026 edition

RSAC 2026 wrap-up – Week in security with Tony Anscombe

Donate Bitcoin to this address

Donate Ethereum to this address

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Spotlight On: Stripe, a New Principal Participating Organization

Spotlight On: Stripe, a New Principal Participating Organization

Can Your Wearable Health Monitors Be Compromised?

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed