Chinese-speaking hackers exploited ESXi zero-days long before disclosure Pierluigi Paganini January 09, 2026 Chinese-speaking attackers used a hacked SonicWall VPN to deploy ESXi zero-days that…
Astaroth banking Trojan spreads in Brazil via WhatsApp worm Pierluigi Paganini January 08, 2026 A WhatsApp worm spread the Astaroth banking trojan across Brazil by…
Public PoC prompts Cisco patch for ISE, ISE-PIC vulnerability Pierluigi Paganini January 08, 2026 Cisco addressed a medium-severity vulnerability in ISE and ISE-PIC after a…
U.S. CISA adds HPE OneView and Microsoft Office PowerPoint flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 08, 2026 U.S. Cybersecurity and Infrastructure Security…
China-linked groups intensify attacks on Taiwan’s critical infrastructure, NSB warns Pierluigi Paganini January 08, 2026 Taiwan says China-linked cyberattacks on its energy sector rose tenfold…
Ni8mare flaw gives unauthenticated control of n8n instances Pierluigi Paganini January 07, 2026 A critical n8n flaw (CVE-2026-21858, CVSS 10.0), dubbed Ni8mare, allows unauthenticated attackers…
Misconfigured email routing enables internal-spoofed phishing Pierluigi Paganini January 07, 2026 Attackers exploit misconfigured email routing to spoof internal emails, using PhaaS platforms like Tycoon2FA…
Misconfigured email routing enables internal-spoofed phishing Pierluigi Paganini January 07, 2026 Attackers exploit misconfigured email routing to spoof internal emails, using PhaaS platforms like Tycoon2FA…
Veeam resolves CVSS 9.0 RCE flaw and other security issues Pierluigi Paganini January 07, 2026 Veeam patched a critical RCE flaw in Backup & Replication,…
Hackers actively exploit critical RCE flaw in legacy D-Link DSL routers Pierluigi Paganini January 07, 2026 Attackers are exploiting a critical flaw (CVE-2026-0625) in old…
Fake Booking.com lures and BSoD scams spread DCRat in European hospitality sector Pierluigi Paganini January 07, 2026 PHALT#BLYX targets European hotels with fake Booking emails…
CERT/CC warns of critical, unfixed vulnerability in TOTOLINK EX200 Pierluigi Paganini January 06, 2026 CERT/CC disclosed an unpatched flaw in the TOTOLINK EX200 that allows…
