Andrea Fortuna
AboutSearch
Tools
DFIR Toolkit OSINT Toolkit
  • Feb 28, 2026

    Face ID vs. Android Face Unlock: A Security Comparison

    Apple built Face ID around dedicated hardware that most competitors have never replicated at scale. The TrueDepth camera system, introduced with the iPhone X in 2017 and refined across every subsequent generation,.… read more »
  • Feb 27, 2026

    Audit-Proofing your NIS2 training plan: a strategic guide

    How to build an audit-proof NIS2 training plan with governance ownership, role-based content, assessment metrics, and evidence packages regulators can verify.… read more »
  • Feb 26, 2026

    Privileged access management: risks and best practices for zero trust implementations

    In any enterprise environment, privileged accounts represent the highest-value target for attackers. These are not just administrator credentials; they encompass service accounts, DevOps pipelines.… read more »
  • Feb 23, 2026

    CERT-EU's cyber threat intelligence framework: a common language for European digital defence

    On February 13, 2026, CERT-EU (the Computer Emergency Response Team for the EU Institutions, Bodies and Agencies) released its Cyber Threat Intelligence Framework, a document that formalizes how.… read more »
  • Feb 22, 2026

    The end of security as we knew it: what Claude Code Security really means

    When Anthropic launched Claude Code Security in February 2026, cybersecurity stocks dropped sharply. But the real disruption is not in the market — it is in the model itself.… read more »
  • Feb 20, 2026

    ClickFix: the new frontier of social engineering between DNS and Google Ads

    A new generation of ClickFix attacks abuses DNS lookups and Google-sponsored ads to deliver malware, bypassing traditional defenses and exploiting user trust in legitimate platforms.… read more »
  • Feb 19, 2026

    Italy's cyber perimeter under fire: two institutional breaches in fifteen days

    Between the night of February 1 and February 2, 2026, Sapienza University of Rome experienced something far more serious than a routine IT outage. What struck its campus was a full digital.… read more »
  • Feb 17, 2026

    Fake recruiters weaponize job offers to target cryptocurrency developers

    A sophisticated cyber campaign orchestrated by the North Korean Lazarus Group is using fake job opportunities to compromise cryptocurrency developers worldwide. Security researchers at ReversingLabs have uncovered a.… read more »
  • Feb 6, 2026

    The Trojan horse in your cluster: a deep dive into container image security

    It is 2:00 AM. Your phone lights up with the notification every CISO and SecOps engineer dreads. Your Security Operations Center is lighting up like a Christmas tree. An attacker has just.… read more »
  • Feb 5, 2026

    24/7 Security monitoring for small teams

    Most organizations don't fail at security because they lack tools, they fail because they can't sustain attention at 2:00 AM. The hard part is not collecting logs; it's sustaining focus when people.… read more »
  • Feb 4, 2026

    iOS Forensics without Jailbreak: a practical guide to mobile evidence acquisition

    Every time I work on an iOS forensic case, someone asks me: "Do we need to jailbreak this thing?" It's a fair question, and the answer has changed a lot over the.… read more »
  • Jan 31, 2026

    Why you should remove 'ClawdBot' (or whatever it's called) right now

    If you’ve been keeping an eye on developer news in 2026, you’ve probably come across ClawdBot . Maybe you know it as MoltBot or the latest fork, OpenClaw . No matter what.… read more »
  • Jan 28, 2026

    Beyond the Checklist: why true Security Leadership demands strategy, not just plans

    Here's something I've noticed after years in cybersecurity leadership: we're addicted to action. Give us a roadmap, a Gantt chart, or a deployment schedule showing everything in green, and we feel like.… read more »
  • Jan 26, 2026

    AWS European Sovereign Cloud: Digital sovereignty or sophisticated marketing?

    Amazon Web Services recently launched its European Sovereign Cloud, promising enhanced data sovereignty for European public sector organizations and highly regulated industries. Generally available.… read more »
  • Jan 21, 2026

    Curiosity, boundaries, and trust: Ted Lasso lessons for security leaders

    Eight practical leadership lessons from Ted Lasso, translated into SecOps reality: burnout prevention, psychological safety, strategic patience, and healthier incident response culture.… read more »
  • Jan 20, 2026

    Enterprise security faces new threat from AI-powered browsers

    AI-powered browsers are here, and they're fundamentally changing how people work, which naturally means they're breaking all the security assumptions we've carefully built over the years.… read more »
  • Jan 19, 2026

    Peeking into /proc: turning live Linux data into evidence

    After a long stretch of management talk and incident playbooks, it feels good to get my hands dirty again.… read more »
  • Jan 19, 2026

    What's really slowing down your incident response

    When a security incident hits (a data breach, an active intrusion, ransomware crawling across your network) most people assume technical complexity is what slows everything down. And sure, modern infrastructures are a.… read more »
  • Jan 11, 2026

    Cloudflare–AGCOM: who controls resilience?

    Resilience is not just the ability to “recover after an incident”, it is the ability to keep operating when dependencies become hostile, unavailable, or legally contested. The AGCOM– Cloudflare clash is a.… read more »
  • Jan 10, 2026

    Italy's 2025 cybercrime report reveals a nation under digital siege

    The Polizia Postale e per la Sicurezza Cibernetica has released its annual report for 2025, offering a comprehensive snapshot of cybercrime trends in Italy . The figures paint a complex picture: 51,560.… read more »
« Previous page Next page »

Andrea Fortuna

  • Andrea Fortuna
  • andrea@andreafortuna.org
  • andreafortuna
  • andreafortunaig
  • andrea-fortuna

Cybersecurity expert, software developer, experienced digital forensic analyst, musician