Pierluigi Paganini

The latest malware newsletter reveals new threats like Infiniti Stealer and npm supply chain attacks. Developers and organizations must stay alert to evolving risks in cybersecurity.

A malicious email has delivered a .cmd malware file that escalates privileges and bypasses antivirus systems. Users are at risk of significant system compromise. Awareness and immediate action are vital to mitigate this threat.

Iranian hackers have breached PSK Wind Technologies, an Israeli defense contractor. Sensitive military data has been stolen, posing serious risks to national security. Organizations must strengthen their defenses against such cyber threats.

CISA has flagged a critical vulnerability in Google Dawn, urging users to update their browsers immediately. This flaw allows remote code execution, putting many at risk. Stay safe by updating now.

A recent study reveals that many free VPNs on Android leak user data while claiming to protect privacy. Users are exposed to tracking and dangerous permissions. Choosing reputable VPN services is crucial for safeguarding digital privacy.

A critical vulnerability in Telegram could allow hackers to take over devices without user interaction. Telegram denies the existence of this flaw, raising concerns for millions of users. With no patch available, the risk remains high. Stay alert and protect your device until a solution is found.

Nasir Security, a group linked to Iran, is targeting energy companies in the Gulf. This poses a significant risk to critical infrastructure and regional stability. Companies must enhance their cybersecurity measures to mitigate these threats.

Iran-linked actors are using Telegram to deploy malware against dissidents and journalists. This poses a serious risk of surveillance and data theft. The FBI is raising awareness to help protect potential victims.

A French aircraft carrier was tracked through a sailor's Strava activity, revealing a serious operational security flaw. This incident highlights the risks of fitness apps for military personnel.

Russia has turned Vienna into its largest spy hub, monitoring NATO communications. With around 500 diplomats, many may be covert spies. This poses significant security risks for Western nations.

Payload Ransomware claims to have breached Royal Bahrain Hospital, stealing 110 GB of sensitive data. Patients and the healthcare sector are at risk as the group threatens to leak this data if the ransom isn't paid. Urgent action is needed to protect sensitive information.

File servers are fading as modern workflows shift to collaboration tools and AI. This change raises concerns about data security. Organizations need to rethink how they protect unstructured data across diverse platforms.

ENISA has launched its first Technical Advisory on Secure Package Managers. This guide helps developers safely use third-party packages. With rising security threats, following these best practices is essential for protecting your projects. Don't risk your software's integrity!