JDY Botnet Evolves After KV Takedown, Targets Military Networks
JDY Botnet Evolves After KV Takedown, Targets Military Networks Pierluigi Paganini June 11, 2026 JDY botnet scans SOHO/IoT devices globally to map services and targets,…
Category: Securityaffairs
Chaotic Eclipse Strikes Again: New Zero-Day Unlocks BitLocker in Four Hours of Research
Chaotic Eclipse Strikes Again: New Zero-Day Unlocks BitLocker in Four Hours of Research Pierluigi Paganini June 11, 2026 GreatXML bypasses BitLocker via Defender offline scan…
CVE-2026-10520 Exploited: Ivanti Sentry Gateways Compromised Shortly After Patch Release
CVE-2026-10520 Exploited: Ivanti Sentry Gateways Compromised Shortly After Patch Release Pierluigi Paganini June 11, 2026 Attackers are exploiting the critical CVE-2026-10520 flaw in Ivanti Sentry,…
OnyxC2 Malware-as-a-Service Offers Enterprise-Grade Data Theft
OnyxC2 Malware-as-a-Service Offers Enterprise-Grade Data Theft Pierluigi Paganini June 11, 2026 OnyxC2 is a MaaS stealer targeting 210+ apps, using DLL sideloading, encrypted payloads, and…
Fortinet patched a new critical FortiSandbox flaw
Fortinet patched a new critical FortiSandbox flaw Pierluigi Paganini June 11, 2026 Fortinet patched a critical FortiSandbox vulnerability that could let unauthenticated attackers remotely execute…
“AI Worms”, researchers demonstrate autonomous malware capable of adapting to any online device
“AI Worms”, researchers demonstrate autonomous malware capable of adapting to any online device Pierluigi Paganini June 10, 2026 A study by the University of Toronto…
Chaotic Eclipse Unveils RoguePlanet Exploit Targeting Fully Patched Windows
Chaotic Eclipse Unveils RoguePlanet Exploit Targeting Fully Patched Windows Pierluigi Paganini June 10, 2026 The researcher Chaotic Eclipse released a PoC for the RoguePlanet Microsoft…
Russian APTs Still Exploiting Patched WinRAR Flaw CVE-2025-8088
Russian APTs Still Exploiting Patched WinRAR Flaw CVE-2025-8088 Pierluigi Paganini June 10, 2026 Despite a 2025 patch, Russian-linked groups still exploit a WinRAR flaw (CVE-2025-8088)…
U.S. CISA adds Cisco Catalyst SD-WAN, Arista Extensible Operating System (EOS), and Google Chromium V8 flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Cisco Catalyst SD-WAN, Arista Extensible Operating System (EOS), and Google Chromium V8 flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini June…
Miasma Worm Compromises 73 Microsoft GitHub Repositories
Miasma Worm Compromises 73 Microsoft GitHub Repositories Pierluigi Paganini June 09, 2026 The Miasma worm compromised 73 Microsoft GitHub repos, spreading via AI coding tools…
Microsoft Releases Record-Breaking Patch Tuesday With 208 CVEs
Microsoft Releases Record-Breaking Patch Tuesday With 208 CVEs Pierluigi Paganini June 09, 2026 Microsoft Patch Tuesday security updates for June 2026 fix a record 208…
Critical Veeam RCE flaw Lets Low-Privilege Users Take Over Backup Servers
Critical Veeam RCE Flaw Lets Low-Privilege Users Take Over Backup Servers Pierluigi Paganini June 09, 2026 Veeam addressed a critical RCE vulnerability flaw in Backup…