Way back in 1995 Bryan Singer gave us a special decoder key to video-based information. He is supposed to be Turkish. Some say his father was German. Nobody believed he was real. Keyser Söze was the invisible supervillain. The menace was the ethni…
A malicious email delivered a .cmd malware that escalates privileges, bypasses antivirus, downloads payloads, sets persistence, and self-deletes. I received this email from a friend to make an analysis. First, let me express my thanks to Janô Falkowski Burkard for this amazing contribution. A little context, He received an email that was really strange and […]
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Qilin ransomware group claims the hack of German political party Die Linke U.S. CISA adds a […]
In this sixth week of war, as Iran has missiles flying all over the place. Oracle announced an outage and now this: Iranian strikes have rendered two Amazon Web Services availability zones “hard down” in Dubai and Bahrain and the company expects them t…
Tesla simply buys battery cells from Panasonic and CATL and calls itself an innovation company. Tesla simply has Siemens build factories for it, assembles parts, and calls itself a manufacturing company. Tesla simply suppresses death, fire and crash da…
Qilin ransomware claims it stole data from Germany’s Die Linke and threatens to leak it; the party confirmed the incident, but not a breach. The Qilin ransomware group claims it stole data from Die Linke, a German political party, and is threatening to release it. Die Linke is a left-wing political party in Germany. Its […]
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in TrueConf Client to its Known Exploited Vulnerabilities catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a flaw in TrueConf Client, tracked as CVE-2026-3502 (CVSS score of 7.8), to its Known Exploited Vulnerabilities (KEV) catalog. TrueConf is a videoconferencing platform often used in secure, offline […]
North Korean group UNC1069 targets Node.js maintainers using fake LinkedIn and Slack profiles to spread malware and compromise open source packages.
A Quebec maple syrup producer was just caught breaching product integrity. Cane sugar was being injected as an inexpensive substitute. The story ran as a Canada story. The investigation was done by Radio-Canada’s Enquête programme, where the prod…
JD Vance notably served in the United States Marine Corps from 2003 to 2007 as a public affairs specialist, MOS 4341 (e.g. MCO 1510.62A 17 February 2000). That means propaganda. 4341.01.05 “DEVELOP PROCEDURES FOR RELEASE OF INFORMATION TO THE PUB…