Key insights from Forrester’s External Threat Intelligence Service Providers Landscape, Q1 2026 and what they mean for security teams.

Learn about the key insights from ANY.RUN at RSAC 2026, including award recognition at the Global InfoSec Awards 2026.

F5 has reclassified a BIG-IP APM denial-of-service (DoS) vulnerability as a critical-severity remote code execution (RCE) flaw, warning that attackers are exploiting it to deploy webshells on unpatched devices.

Il Tribunale di Roma annulla la sanzione del Garante privacy a OpenAI. Una sentenza che pone interrogativi sui rapporti tra autorità indipendenti e giudici: chi interpreta il GDPR nell’era AI? Tra rischio delegittimazione delle DPA, frammentazione europea ed enforcement che diventa negoziabile per le big tech

The surge in UAE cyberattacks reflects broader regional tensions, which have intensified the motivation of hostile actors.

Today we will look at the ClockworkPi uConsole as a pocket‑sized Linux. I will explain what the device is, what comes in the box, how to install popular OS images (Kali, Ubuntu, Arch, RetroPie), how to expand it with the growing lineup of expansion boards, and practical workflows you can reproduce. Where helpful, I link

Microsoft has pulled a buggy Windows 11 non-security preview update to investigate a known issue that triggers 0x80073712 errors during installation.

In conversation with Dr Priyanka Sunder, Co-founder CHRIO SecureMojo and National Cyber Security Scholar

CERT-UA discovered AGEWHEEZE remote access trojan targeting government and hospital networks.

Per la prima volta nella sua storia, l’Europa non si limita a regolamentare il digitale, ma prova a costruirlo, con il social network IVORY e la suite di produttività Office.eu. Non rappresentano una soluzione definitiva, ma segnano un cambio di direzione. Ecco perché

Latvia’s Ministry of Defence said it continues to monitor the Russian information operation and assess its impact across the Baltic States.

Attackers are now actively exploiting a critical vulnerability in Fortinet's FortiClient EMS platform, according to threat intelligence company Defused.

Study reveals smart home breach and limited post-incident guidance for smart homes across 11 countries, per Leipzig University research.

Uncover the new sophisticated EvilTokens device code phishing as-a-service, with AI-augmented features facilitating BEC fraud

The European Commission has confirmed a data breach after its Europa.eu web platform was hacked in a cyberattack claimed by the ShinyHunters extortion gang.

Beyond incorrect Black Friday discounts, the sweep uncovered several other questionable online pricing practices.

CVE-2026-3055 impacts Citrix NetScaler SAML IDP setups, exposing memory overread risks. Active reconnaissance signals growing threat activity.

The European Commission cyberattack remains contained, but the investigation will determine how serious the data exposure is

The Handala hackers associated with Iran have breached the personal email account of FBI Director Kash Patel and published photos and documents.

La questione detection si comincia a fare interessante a partire da questa funzionalità che – IMHO – fa sembrare il function hooking una modo “grezzo” di approcciare il prob…

A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, can be exploited to allow subscriber-level users access to arbitrary files on the server.

La violazione dell’account mail personale di Kash Patel mostra quanto un profilo privato possa diventare un obiettivo strategico. Anche senza dati classificati, il materiale sottratto può alimentare intelligence, propaganda e futuri attacchi di spear phishing

Due episodi molto diversi mostrano quanto la minaccia cyber resti alta anche su profili istituzionali altissimi. Il caso della mail del direttore Fbi Patel violata da hacker iraniani sembra legato a dati personali datati mentre la violazione del cloud della Commissione europea richiama aziende e istituzioni a una gestione più matura del rischio digitale

A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler.

Ita Airways ha avvisato gli iscritti Volare di un accesso non autorizzato ai dati personali. Non risultano coinvolte password o carte, ma il rischio di phishing cresce mentre il programma chiude e il passaggio a Miles & More entra nella fase finale

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver credential-stealing malware hidden inside a WAV file.