The 0patch team has reported that while analyzing CVE-2025-59230 in the Windows Remote Access Connection Manager (RasMan)—a flaw Microsoft addressed with its October 2025 updates—researchers uncovered a working exploit that enables local code execution...
The administration of U.S. President Donald Trump is preparing to enlist private companies in the conduct of offensive cyber operations against foreign adversaries—a move that could significantly expand the “shadow” digital war traditionally waged...
A scheme is gaining momentum worldwide in which doxers impersonate police officers and use so-called “emergency requests” to coerce major companies into disclosing private personal data within minutes. On September 4, for example, an...
The United Kingdom has announced sanctions against two Chinese technology companies, accusing them of reckless and indiscriminate cyberattacks targeting the UK and its allies. The measures apply to Sichuan Anxun Information Technology Co. Ltd—better...
The long-running React2Shell saga—which has continued to disrupt many web projects—has taken another turn: it has emerged that the original fix was incomplete. A deeper review uncovered two additional vulnerabilities in the React Server...
A newly discovered flaw in the Windows Remote Access Connection Manager (RasMan) service allows the operating system to be disrupted without administrative privileges. A free, unofficial fix is already available, while Microsoft prepares its...
A new multifunctional Windows trojan dubbed NANOREMOTE leverages a cloud-based file storage service as a covert command-and-control hub, complicating detection while providing attackers with a resilient channel for data exfiltration and the delivery of...
A new Android malware known as Droidlock turns an infected smartphone into a device fully controlled by attackers. The malware locks the screen with a ransom banner, steals application lock codes, and gains access...
A new technique dubbed “ConsentFix” expands upon the already known ClickFix social engineering attack, enabling the hijacking of Microsoft accounts without passwords or multi-factor authentication. To achieve this, attackers exploit the legitimate Azure CLI...
Gladinet is facing fresh trouble once again: vulnerabilities have been uncovered in its CentreStack and Triofox products stemming from embedded, hardcoded cryptography. According to Huntress, the AES implementation relies on fixed keys, allowing attackers...
Notepad++ has released version 8.8.9 to remediate a weakness in its WinGUp (GUP.exe) update mechanism. Researchers and users had reported incidents in which the updater, instead of fetching a legitimate installer, downloaded and executed...
One of the cybersecurity industry’s most frequently cited “benchmarks” has once again made the rounds in slide decks and marketing brochures: MITRE has published the results of its 2025 ATT&CK Evaluations for enterprise security...
