Expanding Microsoft Teams’ capabilities for working with external users brings not only convenience, but also new vulnerabilities. The Ontinue team has detailed a technique that exploits the peculiarities of guest access to bypass Microsoft...
The “Bloody Wolf” group is expanding its targeted campaign across Central Asia, deploying NetSupport RAT and impersonating government agencies. According to Group-IB specialists, the attacks that began in Kyrgyzstan in the summer of 2025...
GreyNoise Labs has unveiled GreyNoise IP Check, an online service that allows users to determine whether their IP address has been observed participating in suspicious scanning activity linked to botnets or residential proxy networks....
During AWS’s major outage in October, Fortinet specialists uncovered a new botnet, ShadowV2, built on Mirai-derived malware and targeting IoT devices worldwide. According to FortiGuard Labs, the campaign appeared to be a “trial run”...
Myanmar’s military is loudly proclaiming its “fight against scammers,” detonating buildings inside the notorious KK Park complex on the Thai border. Yet satellite imagery and expert assessments reveal that the destruction affects only a...
RedExt is a sophisticated browser data analysis framework designed for authorized red team operations. It combines a Manifest V3 Chrome extension with a Flask-based C2 server to provide comprehensive browser data collection and analysis...
RingReaper is a simple post-exploitation agent for Linux designed for those who need to operate stealthily, minimizing the chances of being detected by EDR solutions. The idea behind this project was to leverage io_uring, the new...
The hacker collective known as Scattered LAPSUS$ Hunters — which has spent this year extorting dozens of corporations and selling stolen data — has proven to be built, in no small part, around a...
Hackers breached U.S. radio stations and broadcast fabricated alerts and streams of obscenities live on air, prompting the FCC to once again remind broadcasters of the fundamentals of cybersecurity. The intruders seized control of...
A malicious extension has been discovered in the Chrome catalog — an add-on that, without the owner’s knowledge, inserts a hidden fee into Solana transactions and diverts it to a wallet controlled by the...