securityaffairs

@[email protected]
1.4K Followers
177 Following
4.6K Posts
Pierluigi Paganini is a member of the ENISA (European Union Agency for Network and Information Security) Ad-Hoc Working Group on Cyber Threat Landscapes and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Pierluigi is a cyber security expert with over 25 years of experience in the field.
securityaffairs12h ago
#North #Korea–linked hackers drain $285M from #Drift in sophisticated attack
https://securityaffairs.com/190330/hacking/north-korea-linked-hackers-drain-285m-from-drift-in-sophisticated-attack.html
#securityaffairs #hacking
North Korea–linked hackers drain $285M from Drift in sophisticated attack

Drift lost $285M in a sophisticated attack, likely by North Korea , who used nonce-based tricks to gain control and quickly drain funds

Security Affairs
securityaffairs13h ago
#CrystalX #RAT: new #MaaS #malware combines #spyware, stealer, and remote access
https://securityaffairs.com/190310/uncategorized/crystalx-rat-new-maas-malware-combines-spyware-stealer-and-remote-access.html
#securityaffairs #hacking
CrystalX RAT: new MaaS malware combines spyware, stealer, and remote access

CrystalX RAT, a new sophisticated MaaS malware, combines spyware, data theft, and remote access, allowing attackers to monitor victims.

Security Affairs
securityaffairs13h ago
Pro-#Iran #Handala group breached Israeli defence contractor PSK Wind Technologies
https://securityaffairs.com/190319/data-breach/pro-iran-handala-group-breached-israeli-defence-contractor-psk-wind-technologies.html
#securityaffairs #hacking #Israel
Pro-Iran Handala group breached Israeli defence contractor PSK Wind Technologies

Iran-linked hackers claim to have breached Israeli air defence contractor PSK Wind, which develops command and control systems.

Security Affairs
securityaffairs1d ago
#Hasbro hit by cyberattack, investigates possible data breach
https://securityaffairs.com/190306/security/hasbro-hit-by-cyberattack-investigates-possible-data-breach.html
#securityaffairs #hacking
Hasbro hit by cyberattack, investigates possible data breach

Hasbro suffers a cyberattack, disrupting some operations; the company is probing the scope and potential data compromise.

Security Affairs
securityaffairs1d ago
#Hasbro hit by cyberattack, investigates possible data breach
https://securityaffairs.com/190306/security/hasbro-hit-by-cyberattack-investigates-possible-data-breach.html
#securityaffairs #hacking
Hasbro hit by cyberattack, investigates possible data breach

Hasbro suffers a cyberattack, disrupting some operations; the company is probing the scope and potential data compromise.

Security Affairs
securityaffairs1d ago
#Cisco fixed critical and high-severity flaws
https://securityaffairs.com/190295/security/cisco-fixed-critical-and-high-severity-flaws.html
#securityaffairs #hacking
Cisco fixed critical and high-severity flaws

Cisco fixed critical flaws that could allow attackers to bypass authentication, run code, and gain access to sensitive data.

Security Affairs
securityaffairs1d ago
Threat actor UAC-0255 impersonate CERT-UA to spread #AGEWHEEZE #malware via phishing
https://securityaffairs.com/190287/hacking/threat-actor-uac-0255-impersonate-cert-ua-to-spread-agewheeze-malware-via-phishing.html
#securityaffairs #hacking #Ukraine
Threat actor UAC-0255 impersonate CERT-UA to spread AGEWHEEZE malware via phishing

Threat actors impersonated CERT-UA to send phishing emails with AGEWHEEZE malware, tricking victims into installing a fake “security tool.”

Security Affairs
securityaffairs1d ago
Italian #spyware vendor creates fake #WhatsApp app, targeting 200 users
https://securityaffairs.com/190276/malware/italian-spyware-vendor-creates-fake-whatsapp-app-targeting-200-users.html
#securityaffairs #hacking #spyware
Italian spyware vendor creates Fake WhatsApp app, targeting 200 users

WhatsApp blocked a fake app by Italian firm SIO/Asigint that targeted 200 users with spyware, urging them to reinstall the official app.

Security Affairs
securityaffairs2d ago
U.S. #CISA adds a flaw in #Google Dawn to its Known Exploited Vulnerabilities catalog
https://securityaffairs.com/190282/security/u-s-cisa-adds-a-flaw-in-google-dawn-to-its-known-exploited-vulnerabilities-catalog.html
#securityaffairs #hacking #Chrome
U.S. CISA adds a flaw in Google Dawn to its Known Exploited Vulnerabilities catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Google Dawn to its Known Exploited Vulnerabilities catalog.

Security Affairs
securityaffairs2d ago
#Google fixes fourth actively exploited #Chrome zero-day of 2026
https://securityaffairs.com/190265/hacking/google-fixes-fourth-actively-exploited-chrome-zero-day-of-2026.html
#securityaffairs #hacking
Google fixes fourth actively exploited Chrome zero-day of 2026

Google fixed a new Chrome zero-day, tracked as CVE-2026-5281, in the WebGPU Dawn component that is already exploited in the wild.

Security Affairs