New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing
A malicious website can work out which sites you visit and which apps you open, using nothing but JavaScript and...
sites
GoDaddy found malware on 1,980 WordPress sites using Steam as C2 infrastructure
GoDaddy found malware on 1,980 WordPress sites using Steam as C2 infrastructure Pierluigi Paganini June 02, 2026 Malware on approximately...
Ghost CMS flaw abused to push ClickFix attacks on hundreds of sites
Ghost CMS flaw abused to push ClickFix attacks on hundreds of sites Pierluigi Paganini May 25, 2026 Threat actors are...
International police Operation Alice take down 373,000 dark web sites exploiting children
International police Operation Alice take down 373,000 dark web sites exploiting children Pierluigi Paganini March 23, 2026 Operation Alice: Police...
7,500+ Magento sites defaced in global hacking campaign
7,500+ Magento sites defaced in global hacking campaign Pierluigi Paganini March 20, 2026 Hackers defaced 7,500 Magento sites since Feb...
Storm-2561 lures victims to spoofed VPN sites to harvest corporate logins
Storm-2561 lures victims to spoofed VPN sites to harvest corporate logins Pierluigi Paganini March 14, 2026 Attackers linked to Storm-2561...
Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites
Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites Pierluigi Paganini March 12, 2026 An unauthenticated SQL injection...