Security Affairs

Security Affairs newsletter Round 550 by Pierluigi Paganini – INTERNATIONAL EDITION

AndyC 17 November 2025

Security Affairs newsletter Round 550 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini November 16, 2025 A new round of...

Anthropic: China-backed hackers launch first large-scale autonomous AI cyberattack

AndyC 17 November 2025

Anthropic: China-backed hackers launch first large-scale autonomous AI cyberattack Pierluigi Paganini November 16, 2025 China-linked actors used Anthropic’s AI to...

Multiple Vulnerabilities in GoSign Desktop lead to Remote Code Execution

AndyC 16 November 2025

Multiple Vulnerabilities in GoSign Desktop lead to Remote Code Execution Pierluigi Paganini November 15, 2025 Researchers found a critical vulnerability...

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog

AndyC 16 November 2025

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November 15, 2025 U.S. Cybersecurity and Infrastructure...

Security Blogs

Critical CVE-2025-59367 flaw lets hackers access ASUS DSL routers remotely

AndyC 15 November 2025

Critical CVE-2025-59367 flaw lets hackers access ASUS DSL routers remotely Pierluigi Paganini November 14, 2025 ASUS fixed a critical auth-bypass...

Millions of sites at risk from Imunify360 critical flaw exploit

AndyC 15 November 2025

Millions of sites at risk from Imunify360 critical flaw exploit Pierluigi Paganini November 14, 2025 A vulnerability affecting Imunify360 lets...

Security Blogs

Critical FortiWeb flaw under attack, allowing complete compromise

AndyC 15 November 2025

Critical FortiWeb flaw under attack, allowing complete compromise Pierluigi Paganini November 14, 2025 A Fortinet FortiWeb auth-bypass flaw is being...

Germany’s BSI issues guidelines to counter evasion attacks targeting LLMs

AndyC 15 November 2025

Germany’s BSI issues guidelines to counter evasion attacks targeting LLMs Pierluigi Paganini November 14, 2025 Germany’s BSI warns of rising...

Washington Post notifies 10,000 individuals affected in Oracle-linked data theft

AndyC 15 November 2025

Washington Post notifies 10,000 individuals affected in Oracle-linked data theft Pierluigi Paganini November 14, 2025 The Washington Post alerts nearly...

Chrome extension “Safery” steals Ethereum wallet seed phrases

AndyC 14 November 2025

Chrome extension “Safery” steals Ethereum wallet seed phrases Pierluigi Paganini November 13, 2025 Malicious Chrome extension “Safery: Ethereum Wallet” steals...

Amazon alerts: advanced threat actor exploits Cisco ISE & Citrix NetScaler zero-days

AndyC 14 November 2025

Amazon alerts: advanced threat actor exploits Cisco ISE & Citrix NetScaler zero-days Pierluigi Paganini November 13, 2025 Amazon warns that...

Security Blogs

Security Blogs

Synology patches critical BeeStation RCE flaw shown at Pwn2Own Ireland 2025

AndyC 13 November 2025

Synology patches critical BeeStation RCE flaw shown at Pwn2Own Ireland 2025 Pierluigi Paganini November 12, 2025 Synology fixed a critical...

Security Affairs

Anthropic: China-backed hackers launch first large-scale autonomous AI cyberattack

Multiple Vulnerabilities in GoSign Desktop lead to Remote Code Execution

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog

Critical CVE-2025-59367 flaw lets hackers access ASUS DSL routers remotely

Millions of sites at risk from Imunify360 critical flaw exploit

Critical FortiWeb flaw under attack, allowing complete compromise

Germany’s BSI issues guidelines to counter evasion attacks targeting LLMs

Washington Post notifies 10,000 individuals affected in Oracle-linked data theft

Chrome extension “Safery” steals Ethereum wallet seed phrases

Amazon alerts: advanced threat actor exploits Cisco ISE & Citrix NetScaler zero-days

New Danabot Windows version appears in the threat landscape after May disruption

Australia’s spy chief warns of China-linked threats to critical infrastructure

Synology patches critical BeeStation RCE flaw shown at Pwn2Own Ireland 2025

Credential stuffing: What it is and how to protect yourself

This month in security with Tony Anscombe – December 2025 edition

A brush with online fraud: What are brushing scams and how do I stay safe?

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Donate Bitcoin to this address

Donate Ethereum to this address

AZ Monica hospital in Belgium shuts down servers after cyberattack

Threat actor claims the theft of full customer data from Spanish energy firm Endesa

The AI Fix #83: ChatGPT Health, Victorian LLMs, and the biggest AI bluffers

Long-Running Web Skimming Campaign Steals Credit Cards From Online Checkout Pages

Key Insights on SHADOW-AETHER-015 and Earth Preta from the 2025 MITRE ATT&CK Evaluation with Trend Vision One™

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed