12 Million exposed .env files reveal widespread security failures
12 Million exposed .env files reveal widespread security failures Pierluigi Paganini February 27, 2026 Mysterium VPN found 12M IPs exposing .env files, leaking credentials and…
12 Million exposed .env files reveal widespread security failures Pierluigi Paganini February 27, 2026 Mysterium VPN found 12M IPs exposing .env files, leaking credentials and…
Trend Micro fixes two critical flaws in Apex One Pierluigi Paganini February 26, 2026 Trend Micro fixed two critical Apex One flaws enabling remote code…
UAT-10027 campaign hits U.S. education and healthcare with stealthy Dohdoor backdoor Pierluigi Paganini February 26, 2026 UAT-10027 campaign is targeting U.S. education and healthcare sectors…
U.S. CISA adds Cisco SD-WAN flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 26, 2026 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds…
Hackers abused Cisco SD-WAN zero-day since 2023 to gain full admin control Pierluigi Paganini February 26, 2026 Cisco SD-WAN vulnerability CVE-2026-20127 has been exploited since…
Google GTIG disrupted China-linked APT UNC2814 halting attacks on 53 orgs in 42 countries Pierluigi Paganini February 26, 2026 Google and partners disrupted UNC2814, a…
Untrusted repositories turn Claude code into an attack vector Pierluigi Paganini February 25, 2026 Flaws in Anthropic’s Claude Code could allow remote code execution and…
Critical Zyxel router flaw exposed devices to remote attacks Pierluigi Paganini February 25, 2026 Zyxel fixed a critical flaw in multiple routers that lets unauthenticated…
ShinyHunters cyberattack on CarGurus impacts 12.4 Million users Pierluigi Paganini February 25, 2026 ShinyHunters leaked data from 12.4M CarGurus accounts, exposing personal information from the…
Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero Pierluigi Paganini February 25, 2026 A former employee at U.S.…
U.S. CISA adds a flaw in Soliton Systems K.K FileZen to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 25, 2026 The U.S. Cybersecurity and…
Lazarus APT group deployed Medusa Ransomware against Middle East target Pierluigi Paganini February 25, 2026 North Korea’s Lazarus Group used Medusa ransomware in an attack…