tools
-
ForumTrol Operation Uses Chrome Zero-Day in Fresh Phishing Attacks
The ForumTroll APT group has re-emerged with a highly sophisticated phishing campaign aimed at Russian academics, marking a significant escalation…
Read More » -
New Moonwalk++ PoC Demonstrates How Malware Can Forge Windows Call Stacks to Evade Detection
Recently, security researchers have exposed a new and alarming technique that enables malware to completely conceal its presence by falsifying…
Read More » -
Parked Domains Emerge as a Primary Channel for Malware and Phishing
The landscape of domain parking has undergone a significant transformation over the past decade, evolving from a relatively benign monetization…
Read More » -
Link11 Identifies Five Cybersecurity Trends Shaping European Defense Strategies in 2026
Link11, a leading European provider of web infrastructure security solutions, has released new insights highlighting five key cybersecurity developments that…
Read More » -
JumpCloud Remote Assist Windows Agent Vulnerability Allows Privilege Escalation
A critical vulnerability has been discovered in the JumpCloud Remote Assist for Windows agent, allowing low-privileged users to gain NT…
Read More » -
PCPcat Malware Leverages React2Shell Vulnerability to Breach 59,000+ Servers
A sophisticated attack campaign attributed to a group identifying as “PCP” has compromised 59,128 servers in less than 48 hours…
Read More » -
EDR Process Sideloading to Conceal Malicious Activity
Initial access broker Storm-0249 has undergone a significant transformation, evolving from a mass phishing operation into a sophisticated threat actor…
Read More » -
Kali Linux 2025.4 Released Featuring 3 New Hacking Tools and Wifipumpkin3
The latest release of Kali Linux, version 2025.4, is a significant milestone for the ethical hacking distribution, introducing major architectural…
Read More » -
Researchers and Developers Targeted in AI-Driven GitHub Supply Chain Attack
A sophisticated AI-generated supply chain attack is targeting researchers, developers, and security professionals through compromised GitHub repositories, according to findings…
Read More » -
Research Findings on the Fate of Data Stolen in Phishing Attacks
Recent research conducted by Kaspersky has shed light on the entire lifecycle of data stolen during phishing attacks, exposing a…
Read More » -
Surge in Attacks Targeting RSC-Enabled Services Worldwide
In December 2025, CVE-2025-55182 (React2Shell), a vulnerability in React Server Components (RSC) that enables remote code execution (RCE), was publicly…
Read More » -
New “Spiderman” Phishing Kit Lets Hackers Build Fake Bank Login Pages Instantly
A new and sophisticated phishing toolkit, known as “Spiderman,” has been identified as a significant threat to European banking customers.…
Read More » -
AI-Powered Analysis Exposes Massive 5,000-Domain Chinese Malware Operation
DomainTools Investigations has uncovered critical findings regarding the expansion of a massive malware-delivery network targeting Chinese-speaking users worldwide, which has…
Read More » -
Makop Ransomware Evolves with Advanced Evasion Techniques and Exploit Arsenal
Makop, a ransomware strain derived from Phobos, continues to pose a significant threat by exploiting exposed Remote Desktop Protocol (RDP)…
Read More » -
Akira Group Targets Hyper-V and VMware ESXi with Ransomware Exploiting Vulnerabilities
Hypervisors, the invisible backbone of modern corporate IT, have become the new primary battleground for ransomware groups. According to new…
Read More » -
LOLPROX Unveils Undetected Exploitation Routes for Stealthy Hypervisor Attacks
A new security analysis has unveiled “LOLPROX,” a comprehensive catalog of “Living Off The Land” (LOL) techniques specifically targeting Proxmox…
Read More »