CVE-2026-3854 GitHub flaw enables remote code execution
CVE-2026-3854 GitHub flaw enables remote code execution Pierluigi Paganini April 28, 2026 Critical GitHub flaw CVE-2026-3854 lets attackers run code with a single git push,…
Category: Securityaffairs
Microsoft fixes Entra ID flaw enabling privilege escalation
Microsoft fixes Entra ID flaw enabling privilege escalation Pierluigi Paganini April 28, 2026 Microsoft fixed a Microsoft Entra ID flaw where the Agent ID Administrator…
Signal Phishing Campaign Targets German Officials in Suspected Russian Operation
Signal Phishing Campaign Targets German Officials in Suspected Russian Operation Pierluigi Paganini April 28, 2026 Suspected Russian phishing via Signal targeted German officials, exploiting trust…
New Android spyware Morpheus linked to Italian surveillance firm
New Android spyware Morpheus linked to Italian surveillance firm Pierluigi Paganini April 28, 2026 Osservatorio Nessuno uncovered Morpheus spyware spreading via fake Android apps to…
Firefox bug CVE-2026-6770 enabled cross-site tracking and Tor fingerprinting
Firefox bug CVE-2026-6770 enabled cross-site tracking and Tor fingerprinting Pierluigi Paganini April 27, 2026 CVE-2026-6770 let attackers fingerprint Firefox and Tor users, even in Private…
LINKEDIN BROWSERGATE
LINKEDIN BROWSERGATE Pierluigi Paganini April 27, 2026 BrowserGate claims LinkedIn secretly fingerprints users via extensions and device data, sending encrypted results to third parties for…
Medtronic discloses security incident after ShinyHunters claimed theft of 9M+ records
Medtronic discloses security incident after ShinyHunters claimed theft of 9M+ records Pierluigi Paganini April 27, 2026 Medtronic confirmed a breach of its IT systems after…
Chinese spy posed as researcher in spear-phishing campaign targeting NASA to steal defense software
Chinese spy posed as researcher in spear-phishing campaign targeting NASA to steal defense software Pierluigi Paganini April 27, 2026 A Chinese national posed as a…
Fast16: Pre-Stuxnet malware that targeted precision engineering software
Fast16: Pre-Stuxnet malware that targeted precision engineering software Pierluigi Paganini April 27, 2026 Fast16 is a pre-Stuxnet malware that tampered with precision software and spread…
Security Affairs newsletter Round 574 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs newsletter Round 574 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini April 26, 2026 A new round of the weekly Security Affairs newsletter…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 94
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Morpheus: A new Spyware linked to…
Critical bug in CrowdStrike LogScale let attackers access files
Critical bug in CrowdStrike LogScale let attackers access files Pierluigi Paganini April 26, 2026 CrowdStrike fixed CVE-2026-40050 in LogScale self-hosted, a critical flaw allowing unauthenticated…