North Korea–linked APT Kimsuky behind quishing attacks, FBI warns
North Korea–linked APT Kimsuky behind quishing attacks, FBI warns Pierluigi Paganini January 10, 2026 FBI warns that North Korea–linked APT group Kimsuky is targeting governments,…
Category: Securityaffairs
Illinois Department of Human Services (IDHS) suffered a data breach that impacted 700K individuals
Illinois Department of Human Services (IDHS) suffered a data breach that impacted 700K individuals Pierluigi Paganini January 10, 2026 Illinois Department of Human Services (IDHS)…
Trend Micro fixed a remote code execution in Apex Central
Trend Micro fixed a remote code execution in Apex Central Pierluigi Paganini January 09, 2026 Trend Micro fixed three Apex Central flaws discovered by Tenable…
Iran cuts Internet nationwide amid deadly protest crackdown
Iran cuts Internet nationwide amid deadly protest crackdown Pierluigi Paganini January 09, 2026 Iran shut down the internet as protests spread nationwide. Dozens were killed…
China-linked UAT-7290 spies on telco in South Asia and Europe using modular malware
China-linked UAT-7290 spies on telco in South Asia and Europe using modular malware Pierluigi Paganini January 09, 2026 China-linked UAT-7290 has targeted South Asia and…
Chinese-speaking hackers exploited ESXi zero-days long before disclosure
Chinese-speaking hackers exploited ESXi zero-days long before disclosure Pierluigi Paganini January 09, 2026 Chinese-speaking attackers used a hacked SonicWall VPN to deploy ESXi zero-days that…
Astaroth banking Trojan spreads in Brazil via WhatsApp worm
Astaroth banking Trojan spreads in Brazil via WhatsApp worm Pierluigi Paganini January 08, 2026 A WhatsApp worm spread the Astaroth banking trojan across Brazil by…
Public PoC prompts Cisco patch for ISE, ISE-PIC vulnerability
Public PoC prompts Cisco patch for ISE, ISE-PIC vulnerability Pierluigi Paganini January 08, 2026 Cisco addressed a medium-severity vulnerability in ISE and ISE-PIC after a…
U.S. CISA adds HPE OneView and Microsoft Office PowerPoint flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds HPE OneView and Microsoft Office PowerPoint flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 08, 2026 U.S. Cybersecurity and Infrastructure Security…
China-linked groups intensify attacks on Taiwan’s critical infrastructure, NSB warns
China-linked groups intensify attacks on Taiwan’s critical infrastructure, NSB warns Pierluigi Paganini January 08, 2026 Taiwan says China-linked cyberattacks on its energy sector rose tenfold…
Ni8mare flaw gives unauthenticated control of n8n instances
Ni8mare flaw gives unauthenticated control of n8n instances Pierluigi Paganini January 07, 2026 A critical n8n flaw (CVE-2026-21858, CVSS 10.0), dubbed Ni8mare, allows unauthenticated attackers…
Misconfigured email routing enables internal-spoofed phishing
Misconfigured email routing enables internal-spoofed phishing Pierluigi Paganini January 07, 2026 Attackers exploit misconfigured email routing to spoof internal emails, using PhaaS platforms like Tycoon2FA…