Critical Zyxel router flaw exposed devices to remote attacks
Critical Zyxel router flaw exposed devices to remote attacks Pierluigi Paganini February 25, 2026 Zyxel fixed a critical flaw in multiple routers that lets unauthenticated…
Category: Securityaffairs
ShinyHunters cyberattack on CarGurus impacts 12.4 Million users
ShinyHunters cyberattack on CarGurus impacts 12.4 Million users Pierluigi Paganini February 25, 2026 ShinyHunters leaked data from 12.4M CarGurus accounts, exposing personal information from the…
Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero
Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero Pierluigi Paganini February 25, 2026 A former employee at U.S.…
U.S. CISA adds a flaw in Soliton Systems K.K FileZen to its Known Exploited Vulnerabilities catalog
U.S. CISA adds a flaw in Soliton Systems K.K FileZen to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 25, 2026 The U.S. Cybersecurity and…
Lazarus APT group deployed Medusa Ransomware against Middle East target
Lazarus APT group deployed Medusa Ransomware against Middle East target Pierluigi Paganini February 25, 2026 North Korea’s Lazarus Group used Medusa ransomware in an attack…
SolarWinds patches four critical Serv-U flaws enabling root access
SolarWinds patches four critical Serv-U flaws enabling root access Pierluigi Paganini February 24, 2026 SolarWinds addressed four critical Serv-U vulnerabilities that could let attackers gain…
VMware Aria Operations flaws could enable remote attacks
VMware Aria Operations flaws could enable remote attacks Pierluigi Paganini February 24, 2026 Broadcom patched multiple VMware Aria Operations flaws, including high-severity issues that could…
AI-assisted info-stealer shuts down after brief campaign
Arkanix Stealer: AI-assisted info-stealer shuts down after brief campaign Pierluigi Paganini February 24, 2026 Arkanix Stealer surfaced in late 2025 as a short-lived info-stealer, likely…
Everest ransomware hits Vikor Scientific ‘s supplier, data of 140,000 patients stolen
Everest ransomware hits Vikor Scientific ‘s supplier, data of 140,000 patients stolen Pierluigi Paganini February 24, 2026 Everest ransomware claims an attack on diagnostic firm…
APT28 exploits webhooks for covert data exfiltration
Operation MacroMaze: APT28 exploits webhooks for covert data exfiltration Pierluigi Paganini February 24, 2026 Russia-linked APT28 targeted European entities with a webhook-based macro malware campaign…
Wormable XMRig campaign leverages BYOVD and timed kill switch for stealth
Wormable XMRig campaign leverages BYOVD and timed kill switch for stealth Pierluigi Paganini February 23, 2026 A wormable cryptojacking campaign spreads via pirated software, using…
Romanian hacker pleads guilty to selling access to Oregon state networks
Romanian hacker pleads guilty to selling access to Oregon state networks Pierluigi Paganini February 23, 2026 A Romanian man pleaded guilty to selling admin access…