DraftKings thwarts credential stuffing attack, but urges password reset and MFA
DraftKings thwarts credential stuffing attack, but urges password reset and MFA Pierluigi Paganini October 08, 2025 DraftKings warns of credential...
Read more →Category: Securityaffairs
Redis patches 13-Year-Old Lua flaw enabling Remote Code Execution
Redis patches 13-Year-Old Lua flaw enabling Remote Code Execution Pierluigi Paganini October 08, 2025 Redis warns of CVE-2025-49844, a Lua...
Read more →
U.S. CISA adds Synacor Zimbra Collaboration Suite (ZCS) flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Synacor Zimbra Collaboration Suite (ZCS) flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 07, 2025...
Read more →
GoAnywhere MFT zero-day used by Storm-1175 in Medusa ransomware campaigns
GoAnywhere MFT zero-day used by Storm-1175 in Medusa ransomware campaigns Pierluigi Paganini October 07, 2025 Storm-1175 exploits GoAnywhere MFT flaw...
Read more →
CrowdStrike ties Oracle EBS RCE (CVE-2025-61882) to Cl0p attacks began Aug 9, 2025
CrowdStrike ties Oracle EBS RCE (CVE-2025-61882) to Cl0p attacks began Aug 9, 2025 Pierluigi Paganini October 07, 2025 CrowdStrike links...
Read more →
U.S. CISA adds Oracle, Mozilla, Microsoft Windows, Linux Kernel, and Microsoft IE flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Oracle, Mozilla, Microsoft Windows, Linux Kernel, and Microsoft IE flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini...
Read more →
Discord discloses third-party breach affecting customer support data
Discord discloses third-party breach affecting customer support data Pierluigi Paganini October 06, 2025 Discord reported a data breach at a...
Read more →
LinkedIn sues ProAPIs for $15K/Month LinkedIn data scraping scheme
LinkedIn sues ProAPIs for $15K/Month LinkedIn data scraping scheme Pierluigi Paganini October 06, 2025 LinkedIn sued ProAPIs and its CEO...
Read more →
Oracle patches critical E-Business Suite flaw exploited by Cl0p hackers
Oracle patches critical E-Business Suite flaw exploited by Cl0p hackers Pierluigi Paganini October 06, 2025 Oracle fixed a critical flaw...
Read more →
Zimbra users targeted in zero-day exploit using iCalendar attachments
Zimbra users targeted in zero-day exploit using iCalendar attachments Pierluigi Paganini October 06, 2025 Threat actors exploited a Zimbra zero-day...
Read more →
Reading the ENISA Threat Landscape 2025 report
Reading the ENISA Threat Landscape 2025 report Pierluigi Paganini October 06, 2025 ENISA Threat Landscape 2025: Rising ransomware, AI phishing,...
Read more →
Weaponizing AWS X-Ray for Command & Control
Ghost in the Cloud: Weaponizing AWS X-Ray for Command & Control Pierluigi Paganini October 05, 2025 Attackers can weaponize AWS...
Read more →