Mandiant researchers have uncovered active exploitation of a zero-day vulnerability in the Gladinet Triofox remote access and file-sharing platform. CVE-2025-12480 allowed attackers to bypass authorization and reach configuration pages of the web interface, through...
Spyware applications secretly installed on Android devices continue to pose a stealthy and insidious threat to victims of domestic abuse, intimate partner surveillance, and digital coercion. Despite the presence of built-in protection mechanisms and...
A new tool, DonPwner, has been released publicly — a utility for credential analysis and the automation of attacks against role-based Active Directory environments, built atop the DonPAPI database and designed to streamline authorized...
The Linux Kernel developers are preparing to enable Microsoft C Extensions support during kernel compilation. Two patches recently merged into the kbuild-next development tree introduce the compiler flag -fms-extensions for both GCC and LLVM/Clang,...
A North Korean–linked hacking campaign attributed to the KONNI cluster has executed a string of targeted attacks against Android devices in South Korea, uniquely exploiting the legitimate Google Find My Device service to remotely...
A new open-source project named NoMoreStealers has just debuted on GitHub. Presented as a proof-of-concept defense for Windows systems against data-stealing malware, it is authored by a developer using the pseudonym EvilBytecode. The solution...
SigmaOptimizer is a End-to-End Sigma rule generation and optimization tool that automatically creates, tests, and improves Sigma rules based on real-world logs using LLM. It is implemented as a PowerShell script and integrates log analysis, rule evaluation, and iterative...
The APT-C-60 group, previously linked to targeted attacks against Japanese organizations, continues to employ its signature methods—blending proven tactics with updated technical refinements. In recent months, experts from JPCERT have recorded a new wave...
A new iteration of the RondoDox botnet has been uncovered, exhibiting a dramatic escalation in both scale and technical sophistication. Whereas the original variant described in autumn 2024 exploited only a handful of vulnerabilities...
U.S. authorities are reportedly preparing to ban the sale of routers and other network equipment manufactured by TP-Link Systems. According to multiple sources, the initiative is driven less by technical vulnerabilities and more by...
The Taiwanese company QNAP has released updates for its systems addressing seven zero-day vulnerabilities unveiled by participants at Pwn2Own Ireland 2025. The flaws affected the company’s proprietary operating systems QTS and QuTS hero, as...
Hackers have released what appears to be the largest data breach in the history of Chinese cybersecurity — exfiltrating archives from Knownsec, a firm closely tied to state structures in the People’s Republic of...
