Security Affairs

UAT-10027 campaign hits U.S. education and healthcare with stealthy Dohdoor backdoor

AndyC 27 February 2026

UAT-10027 campaign hits U.S. education and healthcare with stealthy Dohdoor backdoor Pierluigi Paganini February 26, 2026 UAT-10027 campaign is targeting...

U.S. CISA adds Cisco SD-WAN flaws to its Known Exploited Vulnerabilities catalog

AndyC 27 February 2026

U.S. CISA adds Cisco SD-WAN flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 26, 2026 U.S. Cybersecurity and...

Hackers abused Cisco SD-WAN zero-day since 2023 to gain full admin control

AndyC 27 February 2026

Hackers abused Cisco SD-WAN zero-day since 2023 to gain full admin control Pierluigi Paganini February 26, 2026 Cisco SD-WAN vulnerability...

Google GTIG disrupted China-linked APT UNC2814 halting attacks on 53 orgs in 42 countries

AndyC 27 February 2026

Google GTIG disrupted China-linked APT UNC2814 halting attacks on 53 orgs in 42 countries Pierluigi Paganini February 26, 2026 Google...

Untrusted repositories turn Claude code into an attack vector

AndyC 26 February 2026

Untrusted repositories turn Claude code into an attack vector Pierluigi Paganini February 25, 2026 Flaws in Anthropic’s Claude Code could...

Critical Zyxel router flaw exposed devices to remote attacks

AndyC 26 February 2026

Critical Zyxel router flaw exposed devices to remote attacks Pierluigi Paganini February 25, 2026 Zyxel fixed a critical flaw in...

ShinyHunters cyberattack on CarGurus impacts 12.4 Million users

AndyC 26 February 2026

ShinyHunters cyberattack on CarGurus impacts 12.4 Million users Pierluigi Paganini February 25, 2026 ShinyHunters leaked data from 12.4M CarGurus accounts,...

Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero

AndyC 26 February 2026

Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero Pierluigi Paganini February 25, 2026...

U.S. CISA adds a flaw in Soliton Systems K.K FileZen to its Known Exploited Vulnerabilities catalog

AndyC 26 February 2026

U.S. CISA adds a flaw in Soliton Systems K.K FileZen to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 25,...

Lazarus APT group deployed Medusa Ransomware against Middle East target

AndyC 26 February 2026

Lazarus APT group deployed Medusa Ransomware against Middle East target Pierluigi Paganini February 25, 2026 North Korea’s Lazarus Group used...

SolarWinds patches four critical Serv-U flaws enabling root access

AndyC 25 February 2026

SolarWinds patches four critical Serv-U flaws enabling root access Pierluigi Paganini February 24, 2026 SolarWinds addressed four critical Serv-U vulnerabilities...

VMware Aria Operations flaws could enable remote attacks

AndyC 25 February 2026

VMware Aria Operations flaws could enable remote attacks Pierluigi Paganini February 24, 2026 Broadcom patched multiple VMware Aria Operations flaws,...

Arkanix Stealer: AI-assisted info-stealer shuts down after brief campaign

AndyC 25 February 2026

Arkanix Stealer: AI-assisted info-stealer shuts down after brief campaign Pierluigi Paganini February 24, 2026 Arkanix Stealer surfaced in late 2025...

Operation MacroMaze: APT28 exploits webhooks for covert data exfiltration

AndyC 25 February 2026

Operation MacroMaze: APT28 exploits webhooks for covert data exfiltration Pierluigi Paganini February 24, 2026 Russia-linked APT28 targeted European entities with...

Everest ransomware hits Vikor Scientific ‘s supplier, data of 140,000 patients stolen

AndyC 25 February 2026

Everest ransomware hits Vikor Scientific ‘s supplier, data of 140,000 patients stolen Pierluigi Paganini February 24, 2026 Everest ransomware claims...

Security Affairs

UAT-10027 campaign hits U.S. education and healthcare with stealthy Dohdoor backdoor

U.S. CISA adds Cisco SD-WAN flaws to its Known Exploited Vulnerabilities catalog

Hackers abused Cisco SD-WAN zero-day since 2023 to gain full admin control

Google GTIG disrupted China-linked APT UNC2814 halting attacks on 53 orgs in 42 countries

Untrusted repositories turn Claude code into an attack vector

Critical Zyxel router flaw exposed devices to remote attacks

ShinyHunters cyberattack on CarGurus impacts 12.4 Million users

Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero

U.S. CISA adds a flaw in Soliton Systems K.K FileZen to its Known Exploited Vulnerabilities catalog

SolarWinds patches four critical Serv-U flaws enabling root access

VMware Aria Operations flaws could enable remote attacks

Arkanix Stealer: AI-assisted info-stealer shuts down after brief campaign

Operation MacroMaze: APT28 exploits webhooks for covert data exfiltration

Everest ransomware hits Vikor Scientific ‘s supplier, data of 140,000 patients stolen

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

As breakout time accelerates, prevention-first cybersecurity takes center stage

Digital assets after death: Managing risks to your loved one’s digital estate

This month in security with Tony Anscombe – March 2026 edition

RSAC 2026 wrap-up – Week in security with Tony Anscombe

Donate Bitcoin to this address

Donate Ethereum to this address

What makes Agentic AI a smart choice for data security?

Claude Mythos: Prepare for your board’s cybersecurity questions about the latest AI model from Anthropic

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Recovery scammers hit you when you’re down: Here’s how to avoid a second strike

Spotlight On: Stripe, a New Principal Participating Organization

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed