Image
Image
MUST READ

AI platform n8n abused for stealthy phishing and malware delivery

 | 

From clinics to government: UAC-0247 expands cyber campaign across Ukraine

 | 

Sweden reports cyberattack attempt on heating plant amid rising energy threats

 | 

CVE-2026-33032: severe nginx-ui bug grants unauthenticated server access

 | 

U.S. CISA adds Microsoft SharePoint Server, and Microsoft Office Excel flaws to its Known Exploited Vulnerabilities catalog

 | 

Mirax malware campaign hits 220K accounts, enables full remote control

 | 

PHP Composer flaws enable remote command execution via Perforce VCS

 | 

Microsoft Patch Tuesday for April 2026 fixed actively exploited SharePoint zero-day

 | 

Personal data of 1 million gym members compromised in Basic-Fit security incident

 | 

US, UK and Canada disrupt $45M crypto theft in Operation Atlantic

 | 

ShinyHunters claim the hack of Rockstar Games breach and started leaking data

 | 

Attackers target unpatched ShowDoc servers via CVE-2025-0520

 | 

U.S. CISA adds Adobe, Fortinet, Microsoft Exchange Server, and Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog

 | 

Fake Claude AI installer abuses DLL sideloading to deploy PlugX

 | 

Hackers access Booking.com user data, company secures systems

 | 

iPhone forensics expose Signal messages after app removal in U.S. case

 | 

Citizen Lab: Webloc tracked 500M devices for global law enforcement

 | 

Iran-linked group Handala claims to have breached three major UAE organizations

 | 

CPUID watering hole attack spreads STX RAT malware

 | 

Adobe fixes actively exploited Acrobat Reader flaw CVE-2026-34621

 | 
Image

LATEST NEWS

VIEW ALL
Image Hacking
AI platform n8n abused for stealthy phishing and malware delivery
Image Pierluigi Paganini Image April 16, 2026

Attackers abuse AI automation platform n8n to run phishing campaigns, deliver malware, and evade security by using trusted infrastructure. Threat actors are exploiting the popular AI workflow auto ...

Image APT
From clinics to government: UAC-0247 expands cyber campaign across Ukraine
Image Pierluigi Paganini Image April 16, 2026

CERT-UA reports UAC-0247 targeting Ukrainian clinics and government bodies with malware stealing data from Chromium browsers and WhatsApp. CERT-UA has revealed a cyber campaign by the threat actor ...

Image Intelligence
Sweden reports cyberattack attempt on heating plant amid rising energy threats
Image Pierluigi Paganini Image April 16, 2026

Sweden says a pro-Russian group attacked a heating plant in 2025. The failed cyberattack highlights growing threats to Europe’s energy infrastructure. Sweden has blamed a pro-Russian group linke ...

Image Hacking
CVE-2026-33032: severe nginx-ui bug grants unauthenticated server access
Image Pierluigi Paganini Image April 15, 2026

An actively exploited critical nginx-ui flaw (CVE-2026-33032) lets attackers bypass authentication and take full control of Nginx servers. A critical vulnerability in nginx-ui, tracked as CVE-2026 ...

top articles

Image
Major outage cripples Russian banking apps and metro payments nationwide
Image April 07, 2026
Image
Bitcoin Depot hack leads to $3.6M Bitcoin theft via stolen credentials
Image April 10, 2026
Image
The alleged breach of China’s National Supercomputing Center can have serious geopolitical consequences
Image April 09, 2026
Image
Eurail data breach impacted 308,777 people
Image April 09, 2026
Image
Hackers claim control over Venice San Marco anti-flood pumps
Image April 12, 2026

newsletter

Subscribe to my email list and stay
up-to-date!

most popular

VIEW ALL
Image Hacking

AI platform n8n abused for stealthy phishing and malware delivery

April 16, 2026

Image APT
From clinics to government: UAC-0247 expands cyber campaign across Ukraine

April 16, 2026

Image Intelligence
Sweden reports cyberattack attempt on heating plant amid rising energy threats

April 16, 2026

Image Hacking
CVE-2026-33032: severe nginx-ui bug grants unauthenticated server access

April 15, 2026

Image Hacking
U.S. CISA adds Microsoft SharePoint Server, and Microsoft Office Excel flaws to its Known Exploited Vulnerabilities catalog

April 15, 2026

recent articles

Image
Hacking
AI platform n8n abused for stealthy phishing and malware delivery

Attackers abuse AI automation platform n8n to run phishing campaigns, deliver malware, and evade security by using trusted infrastructure. Threat actors are exploiting the popular AI workflow auto ...

Image Pierluigi Paganini ImageApril 16, 2026
Image
APT
From clinics to government: UAC-0247 expands cyber campaign across Ukraine

CERT-UA reports UAC-0247 targeting Ukrainian clinics and government bodies with malware stealing data from Chromium browsers and WhatsApp. CERT-UA has revealed a cyber campaign by the threat actor ...

Image Pierluigi Paganini ImageApril 16, 2026
Image
Hacking
CVE-2026-33032: severe nginx-ui bug grants unauthenticated server access

An actively exploited critical nginx-ui flaw (CVE-2026-33032) lets attackers bypass authentication and take full control of Nginx servers. A critical vulnerability in nginx-ui, tracked as CVE-2026 ...

Image Pierluigi Paganini ImageApril 15, 2026
Image
Hacking
U.S. CISA adds Microsoft SharePoint Server, and Microsoft Office Excel flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft SharePoint Server, and Microsoft Office Excel flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecuri ...

Image Pierluigi Paganini ImageApril 15, 2026
Image
Uncategorized
Mirax malware campaign hits 220K accounts, enables full remote control

Mirax, a new Android RAT, spread via Meta ads, infected 220,000 users and turns devices into SOCKS5 proxies, giving attackers full remote control. Mirax is a new Android remote access trojan sprea ...

Image Pierluigi Paganini ImageApril 15, 2026
Image
Security
PHP Composer flaws enable remote command execution via Perforce VCS

Two high-severity flaws in PHP Composer could let attackers run arbitrary commands via malicious repository configs and crafted inputs affecting Perforce VCS. Two high-severity vulnerabilities in ...

Image Pierluigi Paganini ImageApril 15, 2026
Image
Security
Microsoft Patch Tuesday for April 2026 fixed actively exploited SharePoint zero-day

Microsoft Patch Tuesday security updates for April 2026 fixed 165 vulnerabilities, including an actively exploited SharePoint zero-day. Microsoft Patch Tuesday security updates addressed 165 vulne ...

Image Pierluigi Paganini ImageApril 15, 2026
Image
Data Breach
Personal data of 1 million gym members compromised in Basic-Fit security incident

A breach at Basic-Fit exposed data of 1M members, including names, birth dates and bank details after unauthorized access. Basic-Fit, Europe’s largest gym chain, has disclosed a data breach affe ...

Image Pierluigi Paganini ImageApril 14, 2026
Image
Cyber Crime
US, UK and Canada disrupt $45M crypto theft in Operation Atlantic

US, UK and Canada ran Operation Atlantic, uncovering $45M in crypto theft and freezing $12M to return to victims. An international law enforcement operation from the US, UK and Canada, codenamed O ...

Image Pierluigi Paganini ImageApril 14, 2026
Image
Data Breach
ShinyHunters claim the hack of Rockstar Games breach and started leaking data

Leak of 8.1GB data tied to Rockstar Games includes anti-cheat code, game data, analytics and more, reportedly exposed by ShinyHunters. An 8.1GB data leak reportedly linked to Rockstar Games has su ...

Image Pierluigi Paganini ImageApril 14, 2026
Image
Hacking
Attackers target unpatched ShowDoc servers via CVE-2025-0520

A critical RCE flaw, tracked as CVE-2025-0520, in ShowDoc is being actively exploited, putting unpatched servers at serious risk. A critical remote code execution flaw, tracked as CVE-2025-0520 (C ...

Image Pierluigi Paganini ImageApril 14, 2026
Image
Security
U.S. CISA adds Adobe, Fortinet, Microsoft Exchange Server, and Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Adobe, Fortinet, Microsoft Exchange Server, and Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog. The U.S. C ...

Image Pierluigi Paganini ImageApril 14, 2026
Image
Malware
Fake Claude AI installer abuses DLL sideloading to deploy PlugX

Fake Claude website impersonates Anthropic and delivers PlugX RAT via ZIP download using DLL sideloading. A fake website impersonating Anthropic’s Claude service was found distributing the PlugX ...

Image Pierluigi Paganini ImageApril 14, 2026
Image
Data Breach
Hackers access Booking.com user data, company secures systems

Hackers accessed some Booking.com user data, including names, emails, phone numbers, and booking details. The issue is now contained. Booking.com warned that hackers may have accessed customer dat ...

Image Pierluigi Paganini ImageApril 13, 2026
Image
Security
iPhone forensics expose Signal messages after app removal in U.S. case

An FBI case in Texas shows Signal messages can still be recovered from iPhones even after app uninstall, via system artifacts, challenging privacy assumptions. The recent revelations about FBI for ...

Image Pierluigi Paganini ImageApril 13, 2026
Image
Intelligence
Citizen Lab: Webloc tracked 500M devices for global law enforcement

Citizen Lab reported that law enforcement used the surveillance tool Webloc to track up to 500M devices via ad data globally. A report by Citizen Lab revealed that law enforcement agencies in the ...

Image Pierluigi Paganini ImageApril 13, 2026
Image
Hacking
Iran-linked group Handala claims to have breached three major UAE organizations

Iran-linked group Handala claims to have breached three major UAE organizations, Dubai Courts, Dubai Land Department, and Dubai Roads & Transport Authority The group Handala claimed a major c ...

Image Pierluigi Paganini ImageApril 13, 2026
Image
Malware
CPUID watering hole attack spreads STX RAT malware

Threat actors compromised the CPUID website and spread STX RAT through fake CPU-Z and HWMonitor downloads. Attackers breached the website CPUID and replaced download links for CPU-Z and HWMonitor ...

Image Pierluigi Paganini ImageApril 13, 2026
Image
Security
Adobe fixes actively exploited Acrobat Reader flaw CVE-2026-34621

Adobe addressed a critical Acrobat Reader vulnerability, tracked as CVE-2026-34621, which is actively exploited to run malicious code. Adobe released emergency updates to address a critical vulner ...

Image Pierluigi Paganini ImageApril 12, 2026
Image
Hacktivism
Hackers claim control over Venice San Marco anti-flood pumps

Hackers breached Venice ’s San Marco flood system, claiming control of pumps and the ability to disable defenses and flood coastal areas. The technologies that govern the physical world are the ...

Image Pierluigi Paganini ImageApril 12, 2026