Pierluigi Paganini

Naples

Editor-in-Chief at Cyber Defense Magazine

Founder of Security Affairs, CYBHORUS, and Cybaze. Member Ad-Hoc Working Group on Cyber Threat Landscapes, Ethical Hacker, Security Evangelist, Security Analyst

Articles

U.S. CISA adds Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog

1 day ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini May 14, 2025 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Microsoft Windows flaws to its Known Exploited Vulnerabilities (KEV) catalog.
Ivanti fixed two EPMM flaws exploited in limited attacks | OpenText Cybersecurity Community

1 day ago | community.opentextcybersecurity.com | Pierluigi Paganini

May 14, 2025 By Pierluigi PaganiniIvanti addressed two Endpoint Manager Mobile (EPMM) software vulnerabilities that have been exploited in limited attacks. Ivanti has released security updates to address two vulnerabilities in Endpoint Manager Mobile (EPMM) software. The company confirmed that threat actors have chained the flaws in limited attacks to gain remote code execution.
Ivanti fixed two EPMM flaws exploited in limited attacks

1 day ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini May 14, 2025 Ivanti has released security updates to address two vulnerabilities in Endpoint Manager Mobile (EPMM) software. The company confirmed that threat actors have chained the flaws in limited attacks to gain remote code execution.
Microsoft Patch Tuesday security updates for May 2025 fixed 5 actively exploited zero-days

1 day ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini May 14, 2025 Microsoft Patch Tuesday security updates addressed 75 security vulnerabilities in Windows and Windows Components, Office and Office Components, .NET and Visual Studio, Azure, Nuance PowerScribe, Remote Desktop Gateway Service, and Microsoft Defender. Of the flaws fixed by the company, 12 are rated Critical, and the rest is rated Important in severity.
Fortinet fixed actively exploited FortiVoice zero-day

1 day ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini May 14, 2025 Fortinet released security updates to address a critical remote code execution zero-day, tracked as CVE-2025-32756, that was exploited in attacks targeting FortiVoice enterprise phone systems. The vulnerability is a stack-based overflow issue that impacts in FortiVoice, FortiMail, FortiNDR, FortiRecorder and FortiCamera.
How Interlock Ransomware Affects the Defense Industrial Base Supply Chain | OpenText Cybersecurity Community

2 days ago | community.opentextcybersecurity.com | Pierluigi Paganini

May 13, 2025 By Pierluigi PaganiniInterlock Ransomware ‘s attack on a defense contractor exposed global defense supply chain details, risking operations of top contractors and their clients. Resecurity envisions the cascading effects on the defense supply chain due to ransomware activity.
How Interlock Ransomware Affects the Defense Industrial Base Supply Chain

2 days ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini May 13, 2025 Resecurity envisions the cascading effects on the defense supply chain due to ransomware activity. In the recent incident, by attacking a defense contractor, Interlock Ransomware uncovered details about the supply chains and operations of many other top defense contractors globally who use their products, including their end customers.
Marks and Spencer confirms data breach after April cyber attack

2 days ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini May 13, 2025 In April, Marks and Spencer Group plc (M&S) announced it had been managing a cyber incident in recent days with the help of external cyber security experts. Customers report outages affecting card payments, gift cards, and M&S’s Click and Collect service across electronic payment systems.
Moldovan Police arrested a 45-year-old foreign man participating in ransomware attacks on Dutch companies

2 days ago | securityaffairs.com | Pierluigi Paganini

Home Breaking News Cyber Crime Hacking Malware Moldovan Police arrested a 45-year-old foreign man participating in ransomware attacks on Dutch companies Pierluigi Paganini May 13, 2025 Moldovan police arrested a 45-year-old foreign man as a result of a joint international operation involving Moldovan and Dutch authorities. He is internationally wanted for multiple cybercrime, including ransomware attacks, blackmail, and money laundering, targeting Dutch companies. One major attack hit the...
APT group exploited Output Messenger Zero-Day to target Kurdish military operating in Iraq

2 days ago | securityaffairs.com | Pierluigi Paganini

Pierluigi Paganini May 13, 2025 Since April 2024, the threat actor Marbled Dust (aka Sea Turtle, Teal Kurma, Marbled Dust, SILICON and Cosmic Wolf) has exploited a zero-day flaw (CVE-2025-27920) in Output Messenger to target Kurdish military-linked users in Iraq, collecting user data and deploying malicious files.

Contact details

Emails

[email protected]

Socials & Sites

Try JournoFinder For Free

Search and contact over 1M+ journalist profiles, browse 100M+ articles, and unlock powerful PR tools.

Start Your 7-Day Free Trial →

X (formerly Twitter)

Followers: 37K
Tweets: 245K
DMs Open: No

No Tweets found.

Pierluigi Paganini

Articles

U.S. CISA adds Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog

Ivanti fixed two EPMM flaws exploited in limited attacks | OpenText Cybersecurity Community

Ivanti fixed two EPMM flaws exploited in limited attacks

Microsoft Patch Tuesday security updates for May 2025 fixed 5 actively exploited zero-days

Fortinet fixed actively exploited FortiVoice zero-day

How Interlock Ransomware Affects the Defense Industrial Base Supply Chain | OpenText Cybersecurity Community

How Interlock Ransomware Affects the Defense Industrial Base Supply Chain

Marks and Spencer confirms data breach after April cyber attack

Moldovan Police arrested a 45-year-old foreign man participating in ransomware attacks on Dutch companies

APT group exploited Output Messenger Zero-Day to target Kurdish military operating in Iraq

Contact details

Emails

Socials & Sites

X (formerly Twitter)