Oracle has warned of a zero-day vulnerability in E-Business Suite, designated CVE-2025-61882, that permits unauthenticated remote arbitrary code execution. The flaw is already being actively exploited by the Clop group in data-theft operations, making...
The LayerX team has disclosed the mechanics of a novel attack dubbed CometJacking, which exploits the AI-enabled Comet browser from Perplexity. Comet embeds an assistant with access to email, calendar, and other linked services;...
The hacker group Confucius, active in South Asia since at least 2013, has intensified malicious operations against Pakistani organizations. Fortinet researchers documented a fresh wave of intrusions leveraging two malware families — WooperStealer and...
Researcher RyotaK of GMA Flatt Security discovered a serious vulnerability in the Unity game engine—tracked as CVE-2025-59489—which allows a co-resident application on the same device to inject additional command-line parameters into Unity games, creating...
In a complex attack chain that blends malicious advertising, DNS-based control, and multi-stage delivery schemes, researchers at Infoblox uncovered the operations of a cybercriminal group known by the alias Detour Dog. The group orchestrates...
Earlier this week, we reported on a cyberattack targeting the Japanese brewing giant Asahi, which brought nearly all of its production facilities in Japan to a halt. The aftermath was swift — as the...
Since the beginning of 2025, NETSCOUT experts have been observing an active wave of DDoS attacks attributed to a group known as Keymous+. Between February and September alone, 249 incidents were recorded, targeting 60...
The group Lunar Spider—also known under the aliases Gold SwathMore and Elara—has ramped up a new malicious campaign that leverages a counterfeit CAPTCHA verification interface to infect victims’ devices. The primary vector is the...
A hacker collective known as UAT-8099 is presently conducting an active campaign to promote malicious content in search results by compromising Microsoft IIS servers across multiple countries. Cisco Talos researchers found that this Mandarin-language...
The vulnerability rewards platform HackerOne has announced that over the past twelve months, white-hat hackers around the world have earned a total of $81 million in payouts — a 13% increase compared to the...
Amid the ongoing duel between Linux kernel developers and authors of malicious modules, each kernel release reshuffles the balance of power. A recent example is the FlipSwitch rootkit module, which employs an unusual technique...
On September 29, the Intermediate People’s Court of Wenzhou delivered a verdict in the high-profile case of the so-called “Min Clan,” whose operations for years had been entwined with armed militias and vast criminal...
