Security News

Cisco Webex bug lets hackers gain code execution via meeting links
2025-04-18 12:09

Cisco has released security updates for a high-severity Webex vulnerability that allows unauthenticated attackers to gain client-side remote code execution using malicious meeting invite links. [...]

State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns
2025-04-17 11:32

Multiple state-sponsored hacking groups from Iran, North Korea, and Russia have been found leveraging the increasingly popular ClickFix social engineering tactic to deploy malware over a...

Chinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell Tool
2025-04-15 14:06

The China-linked threat actor known as UNC5174 has been attributed to a new campaign that leverages a variant of a known malware dubbed SNOWLIGHT and a new open-source tool called VShell to infect...

Cybersecurity firm buying hacker forum accounts to spy on cybercriminals
2025-04-14 19:36

Swiss cybersecurity firm Prodaft has launched a new initiative called 'Sell your Source' where the company purchases verified and aged accounts on hacking forums to to spy on cybercriminals. [...]

Pakistan-Linked Hackers Expand Targets in India with CurlBack RAT and Spark RAT
2025-04-14 06:55

A threat actor with ties to Pakistan has been observed targeting various sectors in India with various remote access trojans like Xeno RAT, Spark RAT, and a previously undocumented malware family...

Hackers exploit old FortiGate vulnerabilities, use symlink trick to retain limited access to patched devices
2025-04-11 17:46

A threat actor that has been using known old FortiOS vulnerabilities to breach FortiGate devices for years has also been leveraging a clever trick to maintain undetected read-only access to them...

Fortinet: Hackers retain access to patched FortiGate VPNs using symlinks
2025-04-11 16:08

Fortinet warns that threat actors use a post-exploitation technique that helps them maintain read-only access to previously compromised FortiGate VPN devices even after the original attack vector...

Hackers exploit WordPress plugin auth bypass hours after disclosure
2025-04-10 19:11

Hackers started exploiting a high-severity flaw that allows bypassing authentication in the OttoKit (formerly SureTriggers) plugin for WordPress just hours after public disclosure. [...]

Russian hackers attack Western military mission using malicious drive
2025-04-10 14:23

The Russian state-backed hacking group Gamaredon (aka "Shuckworm") has been targeting a military mission of a Western country in Ukraine in attacks likely deployed from removable drives. [...]

Hackers target SSRF bugs in EC2-hosted sites to steal AWS credentials
2025-04-09 20:58

A targeted campaign exploited Server-Side Request Forgery (SSRF) vulnerabilities in websites hosted on AWS EC2 instances to extract EC2 Metadata, which could include Identity and Access Management...