Sometimes a leak starts not with a hacked admin panel, but with an open service request. Attackers are using exactly that method against WordPress sites that run the Gravity SMTP plugin. The vulnerability, tracked...
At a Glance Field Detail Malware family Prinz Eugen (Go-based ransomware, .prinzeugen extension) Threat actor Prinz Eugen group; linked to the operator handle ROOTBOY (suspected) Victims At least five organizations, including Standard Bank Group...
Malware Family: AryStinger Threat Actor: Unknown (Suspected) Victims: Over 4,000 legacy D-Link routers and NAS systems Delivery Vector: Exploitation of older CVEs Key Capabilities: Traffic proxying, distributed scanning, DNS hijacking Source: XLab (Qianxin) Over...
Generative AI as a Criminal Commodity Cybercriminals increasingly integrate artificial intelligence into traditional attack strategies. However, they frequently exploit this novel technology as a lucrative commodity. Recently, researchers investigated various illicit forums and dark...
Even services built for private conversation sometimes betray themselves. The giveaway is not the content of the messages. Instead, it is the ordinary network infrastructure behind them. Analysts at Covert Security found that the...
F5 has issued an unscheduled security advisory for several products tied to NGINX and BIG-IP. The company detailed six NGINX vulnerabilities in total. Some earned a high severity rating, and F5 has already fixed...
GitHub has filled up with fake repositories. They disguise themselves as ordinary developer projects. In reality, they push Trojans through links to ZIP archives. A developer using the alias Orchid uncovered the large campaign....
Attackers have already begun abusing a critical Splunk Enterprise vulnerability. Meanwhile, hundreds of open instances of the product remain reachable on the internet. So the window to patch is closing fast. What Is CVE-2026-20253?...
The Linux kernel has finally settled an old debt. After years of effort, the Linux strncpy removal is complete in version 7.2. The strncpy API is now gone from the source tree. For decades,...
The market intelligence platform Klue has confirmed a breach of part of its integration infrastructure. Attackers obtained OAuth tokens, the digital keys that grant access between services. With those keys, they slipped into the...
Unpatchable Hardware Vulnerabilities Emerge Even the most robust smartphone security inevitably ages alongside its hardware. Recently, Paradigm Shift vividly demonstrated this reality with the iPhone 11. Surprisingly, this older device still receives the latest...
At a glance CVE: CVE-2026-55518 CVSS Score: 9.6 (Critical) Product: Avo Admin Panel Framework Affected Versions: <= 3.32.0 Impact: Privilege escalation, cross-tenant data exposure Exploitation Status: Public PoC exists Fixed-in Version: 3.32.1, 4.0.0.beta.51 Recommended...
Malicious software architectures are increasingly eschewing conspicuous command-and-control infrastructures. Instead, they seamlessly conceal communications with their operators deep within anonymous networks. Recently, Microsoft meticulously chronicled a sophisticated campaign targeting cryptocurrency holders that exemplifies this...
Malicious actors are no longer exclusively targeting rare virtual items within the Roblox ecosystem. They have escalated their operations to expropriate entire developmental projects. Creators have invested years nurturing these digital environments, which often...
The FreeBSD Project has officially announced the release of FreeBSD 15.1-RELEASE. While the operating system’s external interface remains comfortably familiar, the underlying architecture has undergone substantial modernization. This pivotal release introduces profound enhancements to...
