Category: Securityaffairs

North Korean threat actors use JSON sites to deliver malware via trojanized code
17
Nov
2025

North Korean threat actors use JSON sites to deliver malware via trojanized code

North Korean threat actors use JSON sites to deliver malware via trojanized code Pierluigi Paganini November 17, 2025 North Korean…

RondoDox expands botnet by exploiting XWiki RCE bug left unpatched since February 2025
17
Nov
2025

RondoDox expands botnet by exploiting XWiki RCE bug left unpatched since February 2025

RondoDox expands botnet by exploiting XWiki RCE bug left unpatched since February 2025 Pierluigi Paganini November 17, 2025 RondoDox botnet…

U.S. sanctioned North Korea bankers for laundering funds linked to cyberattacks and peapons program
17
Nov
2025

Five admit helping North Korea evade sanctions through IT worker schemes

Five admit helping North Korea evade sanctions through IT worker schemes Pierluigi Paganini November 16, 2025 Five pleaded guilty to…

Security Affairs newsletter Round 549 by Pierluigi Paganini – INTERNATIONAL EDITION
16
Nov
2025

Security Affairs newsletter Round 550 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 550 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini November 16, 2025 A new round of…

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 70
16
Nov
2025

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 71

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware…

China-backed hackers launch first large-scale autonomous AI cyberattack
16
Nov
2025

China-backed hackers launch first large-scale autonomous AI cyberattack

Anthropic: China-backed hackers launch first large-scale autonomous AI cyberattack Pierluigi Paganini November 16, 2025 China-linked actors used Anthropic’s AI to…

Multiple Vulnerabilities in GoSign Desktop lead to Remote Code Execution
16
Nov
2025

Multiple Vulnerabilities in GoSign Desktop lead to Remote Code Execution

Multiple Vulnerabilities in GoSign Desktop lead to Remote Code Execution Pierluigi Paganini November 15, 2025 Researchers found a critical vulnerability…

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog
15
Nov
2025

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November 15, 2025 U.S. Cybersecurity and Infrastructure…

Critical CVE-2025-59367 flaw lets hackers access ASUS DSL routers remotely
14
Nov
2025

Critical CVE-2025-59367 flaw lets hackers access ASUS DSL routers remotely

Critical CVE-2025-59367 flaw lets hackers access ASUS DSL routers remotely Pierluigi Paganini November 14, 2025 ASUS fixed a critical auth-bypass…

Millions of sites at risk from Imunify360 critical flaw exploit
14
Nov
2025

Millions of sites at risk from Imunify360 critical flaw exploit

Millions of sites at risk from Imunify360 critical flaw exploit Pierluigi Paganini November 14, 2025 A vulnerability affecting Imunify360 lets…

Critical FortiWeb flaw under attack, allowing complete compromise
14
Nov
2025

Critical FortiWeb flaw under attack, allowing complete compromise

Critical FortiWeb flaw under attack, allowing complete compromise Pierluigi Paganini November 14, 2025 A Fortinet FortiWeb auth-bypass flaw is being…

BSI issues guidelines to counter evasion attacks targeting LLMs
14
Nov
2025

BSI issues guidelines to counter evasion attacks targeting LLMs

Germany’s BSI issues guidelines to counter evasion attacks targeting LLMs Pierluigi Paganini November 14, 2025 Germany’s BSI warns of rising…