SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 101
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter IronWorm: Shai-Hulud’s rustier cousin…
Month: June 2026
Wiz Integrates with HackerOne for Cloud Context
Security programs generate findings from many sources including automated scanners, cloud security tools, penetration tests, and bug bounty programs. Too often these findings live in…
Redosdru — Encrypting DLL Payloads to Avoid On-Disk Signatures
Lurking within the C:WindowsSystem32 directory was a binary called “wshom.exe”. By manually inspecting the file’s header within a hex editor, we noticed it had been…
CISA orders feds to patch actively exploited Ivanti flaw by Sunday
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch an actively exploited Ivanti Sentry flaw within three days, as mandated by…
Hackers Use OnyxC2 Malware-as-a-Service to Steal Credentials From 210 Applications
A new and dangerous credential-stealing tool called OnyxC2 has emerged in the cybercrime underground, showing just how easy it has become for even low-skilled attackers…
The Gentlemen Ransomware Claims 478 Victims, Can Spread Like a Worm
Ravie LakshmananJun 11, 2026Cybercrime / Ransomware A new analysis of The Gentlemen operation has revealed that the financially motivated threat group initially operated as an…
Ukrainian Extradited from Ireland Pleads Guilty Over Role in Conti Ransomware Scheme
Ukrainian Extradited from Ireland Pleads Guilty Over Role in Conti Ransomware Scheme Pierluigi Paganini June 14, 2026 Ukrainian national Oleksii Lytvynenko pleaded guilty in the…
Wiz for PQC Readiness: Eliminate Cryptographic Blind Spots
The Invisible Foundation: Why Cryptographic Readiness Matters Today For nearly half a century, the mathematical foundations of digital trust, algorithms like RSA and ECC, have…
Deep Dive: Squashing an MSSQL Attack
When it comes to a breach, one of the first questions typically asked is “how did the attackers get in?”. Unfortunately, this isn’t always an…
Pharma giant Novo Nordisk discloses breach of clinical trials data
Danish pharmaceutical giant Novo Nordisk, the world’s largest producer of insulin, disclosed a data breach affecting patient information from some clinical trials. Founded in 1923,…
152 Chrome Extensions Hide Ad Tracking and Fake Google Search Traffic
152 Chrome “live wallpaper” extensions on the Chrome Web Store have been caught secretly logging user data and faking Google “organic search” traffic to inflate…
Palo Alto PAN-OS Flaw Lets Attackers Run Arbitrary Commands With Root Privileges
Palo Alto Networks has released patches for three new PAN-OS vulnerabilities that could allow authenticated administrators or users to execute arbitrary commands with root privileges…