escalation

August 29, 2025

Cisco UCS Manager Software Flaw Allows Attackers to Inject Malicious Commands

Cisco has released urgent security updates to remediate two medium-severity command injection vulnerabilities in its UCS Manager Software that could…
Read More »
August 26, 2025

China-Based Threat Actor Mustang Panda’s TTPs Leaked

A significant milestone for cybersecurity experts is the disclosure of specific tactics, methods, and procedures (TTPs) used by Mustang Panda,…
Read More »
August 23, 2025

10 Best Network Monitoring Tools in 2025

The digital landscape in 2025 is more complex than ever, with organizations relying on intricate hybrid, cloud, and on-premises networks…
Read More »
August 21, 2025

RingReaper Malware Targets Linux Servers, Stealthily Evading EDR Solutions

A new malware campaign dubbed RingReaper has emerged, targeting servers with advanced post-exploitation capabilities that exploit the kernel’s io_uring asynchronous…
Read More »
August 16, 2025

Chinese Hackers Exploit Web Hosting Infrastructure for Cyberattacks

Cisco Talos researchers have uncovered a sophisticated Chinese-speaking advanced persistent threat (APT) group, designated UAT-7237, that has been actively targeting…
Read More »
August 15, 2025

Ransomware Actors Combine Legitimate Tools with Custom Malware to Evade Detection

Operators behind the Crypto24 strain are employing highly coordinated, multi-stage attacks that blend legitimate system tools with bespoke malware to…
Read More »
August 10, 2025

Over 28,000 Microsoft Exchange Servers Exposed Online to CVE-2025-53786 Vulnerability

The cybersecurity community faces a significant threat as scanning data reveals over 28,000 unpatched Microsoft Exchange servers remain exposed on…
Read More »
August 2, 2025

Akira Ransomware Exploits 0-Day Vulnerability in SonicWall Firewall Devices

Cybersecurity firm Arctic Wolf has identified a significant increase in ransomware attacks targeting SonicWall firewall devices in late July 2025,…
Read More »
July 29, 2025

ArmouryLoader Bypasses Security Protections to Inject Malicious Code

ArmouryLoader and other malicious code loaders have become essential tools for introducing Trojan-type payloads into hacked systems in the ever-changing…
Read More »
July 24, 2025

Metasploit Module Released to Exploit SharePoint 0-Day Vulnerabilities

Security researchers have released a Metasploit exploitation module targeting critical zero-day vulnerabilities in Microsoft SharePoint Server, marking a significant escalation…
Read More »
July 21, 2025

Sophos Intercept X for Windows Flaws Enable Arbitrary Code Execution

Sophos has disclosed three critical security vulnerabilities in its Intercept X for Windows endpoint security solution that could allow attackers…
Read More »
July 18, 2025

Ukrainian Hackers Claim Cyberattack on Major Russian Drone Supplier

A Ukrainian woman who survived a catastrophic cluster munition attack in 2014 continues to navigate the complex aftermath of severe…
Read More »
July 16, 2025

Lenovo Vantage Flaws Enable Attackers to Gain SYSTEM-Level Privileges

Security researchers at Atredis have uncovered multiple privilege escalation vulnerabilities in Lenovo Vantage, a pre-installed management platform on Lenovo laptops…
Read More »
July 14, 2025

Grok-4 Jailbroken Using Echo Chamber and Crescendo Exploit Combo

Security researchers have successfully demonstrated a sophisticated jailbreak attack against Grok-4, X’s advanced AI language model, by combining two powerful…
Read More »
July 13, 2025

Fortinet FortiWeb Fabric Connector Flaw Enables Remote Code Execution

Security researchers have identified a severe pre-authentication SQL injection vulnerability in Fortinet’s FortiWeb Fabric Connector, designated as CVE-2025-25257, that allows…
Read More »
July 11, 2025

Mis-scoped AWS Organizations Policy Allowed Hackers to Seize Full Control of AWS Environment

Security professionals have uncovered serious vulnerabilities in AWS Organizations in a ground-breaking study by Cymulate Research Labs that might allow…
Read More »
July 8, 2025

macOS SMBClient Flaw Enables Remote Code Execution and Kernel Crashes

A critical vulnerability has been discovered in Apple’s macOS SMBClient, exposing millions of users to the risk of remote code…
Read More »
July 5, 2025

Scattered Spider Enhances Tactics to Exploit Legitimate Tools for Evasion and Persistence

Scattered Spider, also tracked under aliases such as UNC3944, Scatter Swine, and Muddled Libra, has emerged as a formidable financially…
Read More »
June 28, 2025

Threat Actors Exploit Windows and Linux Server Vulnerabilities to Deploy Web Shells

Threat actors have been observed exploiting file upload vulnerabilities to deploy web shells and advanced malware on both Windows and…
Read More »
June 25, 2025

TeamViewer for Windows Vulnerability Lets Hackers Delete Files with SYSTEM Rights

A critical security vulnerability has been discovered in TeamViewer Remote Management for Windows, exposing systems to potential privilege escalation attacks.…
Read More »

Previous page Next page