Organizers paid $792K for 56 0-days
Pwn2Own Day 2: Organizers paid $792K for 56 0-days Pierluigi Paganini October 23, 2025 Day Two of Pwn2Own Ireland 2025 saw $792K for 56 0-days,…
Category: Securityaffairs
Lazarus targets European defense firms in UAV-themed Operation DreamJob
Lazarus targets European defense firms in UAV-themed Operation DreamJob Pierluigi Paganini October 23, 2025 North Korean Lazarus hackers targeted 3 European defense firms via Operation…
U.S. CISA adds Motex LANSCOPE flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Motex LANSCOPE flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 23, 2025 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Motex…
Over 250 attacks hit Adobe Commerce and Magento via critical CVE-2025-54236 flaw
Over 250 attacks hit Adobe Commerce and Magento via critical CVE-2025-54236 flaw Pierluigi Paganini October 23, 2025 Hackers exploit CVE-2025-54236 in Adobe Commerce and Magento…
Cyberattack on Jaguar Land Rover inflicts $2.5B loss on UK economy
Cyberattack on Jaguar Land Rover inflicts $2.5B loss on UK economy Pierluigi Paganini October 23, 2025 The attack on Jaguar Land Rover costs the UK…
PhantomCaptcha targets Ukraine relief groups with WebSocket RAT in October 2025
PhantomCaptcha targets Ukraine relief groups with WebSocket RAT in October 2025 Pierluigi Paganini October 22, 2025 PhantomCaptcha phishing campaign hit Ukraine relief groups with a…
TP-Link urges immediate updates for Omada Gateways after critical flaws discovery
TP-Link urges immediate updates for Omada Gateways after critical flaws discovery Pierluigi Paganini October 22, 2025 TP-Link warns of critical flaws in Omada gateways across…
TARmageddon flaw in Async-Tar Rust library allows to smuggle extra archives when the library is processing nested TAR files
TARmageddon flaw in Async-Tar Rust library allows to smuggle extra archives when the library is processing nested TAR files Pierluigi Paganini October 22, 2025 CVE-2025-62518…
Russia-linked COLDRIVER speeds up malware evolution after LOSTKEYS exposure
Russia-linked COLDRIVER speeds up malware evolution after LOSTKEYS exposure Pierluigi Paganini October 22, 2025 Russia-linked COLDRIVER rapidly evolved its malware since May 2025, refining tools…
Japanese retailer Muji halted online sales after a ransomware attack on logistics partner
Japanese retailer Muji halted online sales after a ransomware attack on logistics partner Pierluigi Paganini October 21, 2025 Muji halted online sales after a ransomware…
U.S. CISA adds Oracle, Windows, Kentico, Apple flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Oracle, Windows, Kentico, and Apple flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 21, 2025 U.S. Cybersecurity and Infrastructure Security Agency…
China-Linked Salt Typhoon breaches European Telecom via Citrix exploit
China-Linked Salt Typhoon breaches European Telecom via Citrix exploit Pierluigi Paganini October 21, 2025 China-linked Salt Typhoon hacked a European telecom in July 2025 via…