Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack
Cybersecurity researchers have discovered three malicious Go modules that include obfuscated code to fetch next-stage payloads that can irrevocably overwrite...
researchers
Fake Security Plugin on WordPress Enables Remote Admin Access for Attackers
Cybersecurity researchers have shed light on a new campaign targeting WordPress sites that disguises the malware as a security plugin....
TheWizards APT group uses SLAAC spoofing to perform adversary-in-the-middle attacks
In this blogpost, ESET researchers provide an analysis of Spellbinder, a lateral movement tool for performing adversary-in-the-middle attacks, used by...
RansomHub Went Dark April 1; Affiliates Fled to Qilin, DragonForce Claimed Control
Cybersecurity researchers have revealed that RansomHub's online infrastructure has "inexplicably" gone offline as of April 1, 2025, prompting concerns among...
WooCommerce Users Targeted by Fake Patch Phishing Campaign Deploying Site Backdoors
Cybersecurity researchers are warning about a large-scale phishing campaign targeting WooCommerce users with a fake security alert urging them to...
ToyMaker Uses LAGTOY to Sell Access to CACTUS Ransomware Gangs for Double Extortion
Cybersecurity researchers have detailed the activities of an initial access broker (IAB) dubbed ToyMaker that has been observed handing over...
HiddenLayer Investigators Reveal Novel Method to Circumvent AI Safeguards
Reports out this week indicate that HiddenLayer experts have uncovered a tactic for injecting prompts that can evade all the...
Experts Discover Rack::Static Weakness Allowing Data Leaks in Ruby Servers
A team of cybersecurity experts has revealed three vulnerabilities in the Rack Ruby web server interface that, if exploited effectively,...
Malware known as DslogdRAT Distributed Through Zero-Day Vulnerability CVE-2025-0282 in Ivanti ICS Detected in Japan Incidents
Reports from cybersecurity analysts indicate the emergence of a fresh malware labeled as DslogdRAT that infiltrates systems through an unpatched...
ARMO: Impact of the io_uring Interface on Linux Security
Security experts at ARMO have uncovered a critical vulnerability within the Linux operating system, creating a significant gap in runtime...
Linux io_uring Exploit Rootkit Circumvents System Call-Based Threat Detection Programs
Cybersecurity analysts have showcased an evidence-of-exploit (EoE) rootkit named Curing which utilizes a Linux non-blocking I/O technique named io_uring to...
Authorities Reveal Four Novel Privilege Elevation Vulnerabilities in Windows Task Scheduler
Security analysts have outlined four distinct weaknesses in a fundamental aspect of the Windows task planning function that could be...
Developers Cautioned: Slopsquatting & Vibe Coding May Heighten Risk of AI-Powered Breaches
Concerns are being raised by security analysts and developers about the dangers of "slopsquatting," a novel type of supply chain...
Novel BPFDoor Regulator Facilitates Covert Horizontal Progression in Linux Server Breaches
In the realm of cybersecurity, experts have discovered a fresh ruling element linked to a notorious secret passage known as...
ZDI-23-1527 and ZDI-23-1528: The Potential Implication of Excessively Lenient SAS Tokens on PC Manager Supply Chains
Below are the comments from Microsoft for researchers interested in similar research endeavors: Breaching Microsoft Azure Bounty Rules of Engagement...
