Latest news
Cyber News
Fortinet Vulnerability CVE-2026-24858: Hackers Inside Networks with Legitimate Credentials
A serious flaw, classified as CVE-2026-24858, has been confirmed to be exploited in real-world attacks against vulnerable devices. This isn't...
Bajram Zeqiri - January 28, 2026
Cyberpolitics
NSA publishes first operational guidelines on Zero Trust
The U.S. National Security Agency (NSA) has released the first two documents in its Zero Trust Implementation Guidelines (ZIGs) series,...
Silvia Felici - January 28, 2026
Culture
Ransomware doesn’t lock servers, it locks credit. The financial side of cybersecurity
There's this mistaken—somewhat romantic, if you will—idea that ransomware is "IT stuff": a few servers in trouble, a couple of...
Antonio Piovesan - January 27, 2026
innovation
AI Isn’t as Reliable as You Think: The Hidden Risks of LLMs Without Good Governance
Adopting large language models (LLMs) without adequate governance, verification, and oversight risks legal, financial, and reputational damage. This data emerges...
Silvia Felici - January 27, 2026
Culture
Active Defense and Hackback: The Legal Labyrinth of Cybersecurity
In our previous article, we explored how the cybersecurity professional's role as guarantor clashes with classic scenarios such as unauthorized...
Paolo Galdieri - January 27, 2026
Cyber News
And let the phishing begin! Microsoft is taking action against a zero-day exploit already exploited in Office
Once again, Microsoft was forced to quickly fix some flaws. The company has released unscheduled patches for Microsoft Office, addressing...
Pietro Melillo - January 27, 2026
BlueNoroff: The Hacker Group Revolutionizing Cybercrime
The BlueNoroff hacker group has long since transformed cybercrime into a high-tech business, with tens of millions of dollars, cryptocurrency assets, and entire financial ecosystems at stake. A report by...
Your MFA is no longer enough: Phishing kits bypass multi-factor authentication
The amount of PhaaS kit has doubled since last year, according to an analysis by Barracuda Networks, placing increased pressure on security teams. Aggressive newcomers Whisper 2FA and GhostFrame introduced...
Nearly 2,000 bugs in 100 dating apps: How your data can be stolen
A study of 100 dating apps revealed a disturbing picture: nearly 2,000 vulnerabilities were detected, 17% of which were classified as critical. The analysis was conducted by AppSec Solutions. The...
MacSync: The macOS malware that empties your wallet… after weeks
A new malware campaign has emerged in the macOS world, one that relies not on sophisticated exploits, but on good old-fashioned social engineering. It's powered by the MacSync malware, distributed...
He arrived in America with $200 and ended up in a reformatory: today he controls 90% of the world’s AI
How three insiders with just $200 in their pockets reached a market capitalization of $5 trillion and created the company that powers over 90% of artificial intelligence. Kentucky, 1972. A...
The Thin Red Line of Criminal Liability in Cybersecurity
This article is the first in a series of three articles exploring the delicate relationship between cybersecurity professionals and the current regulatory framework. In this first installment, we will analyze...
China Bans Western Cybersecurity Software, Cites Security Fears
Chinese authorities have begun quietly eliminating Western solutions from corporate networks in the country. According to Reuters sources, Chinese companies have been advised to stop using cybersecurity software from dozens...
Vulnerabilities discovered in Foxit PDF Editor, Epic Games Store, and MedDream PACS
Recently, the Cisco Talos vulnerability research and discovery team identified a number of vulnerabilities in various software. Specifically, three vulnerabilities were discovered in the Foxit PDF Editor , one vulnerability...
OpenAI API Logs Vulnerability Exposed: Data Exfiltration Risk
Imagine your chatbot worked properly and didn't display a malicious response to the user. But a leak still occurred later, in the most unexpected place, when the developer opened the...
PurpleBravo’s Contagious Interview: Malware Campaign Targets Global Firms
For over a year, the North Korean group PurpleBravo has been running a targeted malware campaign called “Contagious Interview,” using fake job interviews to attack companies in Europe, Asia, the...
Discover the latest critical CVEs issued and stay updated on the most recent vulnerabilities. Or search for a specific CVE