A critical vulnerability has been identified in Apache Jackrabbit, exposing systems to remote code execution and the potential compromise of corporate infrastructure. Tracked as CVE-2025-58782, the flaw impacts two key components — Jackrabbit Core...
In mid-August, researchers encountered a new ransomware strain, Cephalus, in two separate incidents. Following the recent emergence of families such as Crux and KawaLocker, attention was quickly drawn to a ransom note that began...
The Australian Institute of Criminology has unveiled a comprehensive study exposing the inner workings of ransomware syndicates and their impact on Australia and allied nations. Researchers analyzed 865 attacks recorded between 2020 and 2022...
In recent months, specialists at Acronis TRU have observed a surge in attacks where adversaries deploy counterfeit installers of ConnectWise ScreenConnect to gain initial access into the networks of American companies. This strategy reflects...
Penelope is a powerful shell handler built as a modern netcat replacement for RCE exploitation, aiming to simplify, accelerate, and optimize post-exploitation workflows. Features Session Features Description Unix with Python>=2.3 Unix without Python>=2.3 Windows...
Two security researchers, operating under the pseudonyms BobDaHacker and BobTheShoplifter, have claimed to uncover “catastrophic” vulnerabilities in the systems of Restaurant Brands International (RBI)—the parent company of Burger King, Tim Hortons, and Popeyes, which...
A critical vulnerability, CVE-2025-42957, has been identified in SAP S/4HANA, carrying a near-maximum CVSS score of 9.9. The flaw enables users with only minimal privileges to execute arbitrary code, effectively granting them full control...
PortSwigger researcher Gareth Hayes has unveiled a novel technique for stealing data directly from HTML attributes using inline CSS, without relying on selectors or external style sheets. The discovery was made possible by the...
Security researcher Matthew Bryant has introduced a new tool called Thermoptic—an HTTP proxy that disguises network requests as genuine Chrome browser traffic, enabling users to circumvent blocking systems based on connection fingerprint analysis. Such...
The Seqrite Labs APT-Team has uncovered a new campaign targeting Kazakhstan’s energy sector. Tracked since April 2025, the operation has been attributed to a previously unknown group, now dubbed NoisyBear. Its primary victim was...