The emergence of a new malicious tool within the React2Shell attack chain has become a notable development amid the surge of compromises that followed the disclosure of CVE-2025-55182. This time, the activity goes far...
Researchers at Securonix have uncovered a multi-layered malware campaign designed to surreptitiously deploy the NetSupport RAT remote access tool. The attack unfolds through a series of carefully obfuscated stages, each engineered for maximum stealth...
Security researchers have disclosed a .NET vulnerability that could affect a wide range of enterprise products and lead to remote code execution. The issue stems from how Microsoft .NET–based applications process SOAP messages, and,...
Attackers are actively exploiting a newly discovered zero-day vulnerability in Gogs—a widely used self-hosted Git service—for which no official patch has yet been released. According to Wiz, the ongoing campaign has already compromised more...
Cisco Talos has uncovered a new DeadLock ransomware campaign in which attackers exploit a vulnerable Baidu Antivirus driver (CVE-2024-51324) to disable EDR systems using the Bring Your Own Vulnerable Driver (BYOVD) technique, dismantle defenses...
A previously obscure Linux backdoor known as GhostPenguin has emerged from the shadows thanks to automated threat hunting, in which Trend Research leveraged AI to analyze thousands of undetected samples from VirusTotal. Analysts uncovered...
The cybercriminal group GrayBravo, formerly known as TAG-150, continues to evolve at a rapid pace, demonstrating a high degree of technical sophistication, operational flexibility, and an ability to scale its infrastructure. A new investigation...
GhostFrame is a newly emerged phishing tool that, in just three months, has already powered more than one million attacks. It relies on a deceptively simple HTML file and a concealed iframe to swap...
SpearSpray is an advanced password spraying tool designed specifically for Active Directory environments. It combines user enumeration via LDAP with intelligent pattern-based password generation to perform controlled and stealthy password spraying attacks over Kerberos. Features...
Google has released an unscheduled Chrome update to patch a zero-day vulnerability already being exploited in active attacks. The fix is included in stable build 143.0.7499.110 for Windows and macOS, and 143.0.7499.109 for Linux....
Microsoft has released its December security updates: Patch Tuesday brings fixes for 57 vulnerabilities, including three zero-days (one of which is already being actively exploited) and three critical remote-code-execution flaws. Administrators and Windows users...
The investigation in Japan has detained two Chinese nationals suspected of orchestrating the largest known market-manipulation scheme involving hijacked brokerage accounts. The men are accused of violating the law prohibiting unauthorized access and of...
