Cybersecurity
624 articles in this category (Page 6 of 26)
Warlock Ransomware Breaches SmarterTools Through Unpatched SmarterMail Server
Warlock ransomware breached SmarterTools via unpatched SmarterMail, exploiting critical flaws to access Windows systems and deploy encryption payloads, affecting 12 Windows servers and hosted customers using SmarterTrack
China-Linked DKnife AitM Framework Targets Routers for Traffic Hijacking, Malware Delivery
China-linked DKnife framework compromises routers for traffic hijacking, credential theft, and malware delivery, targeting edge devices with a modular architecture of seven Linux-based implants.
Compromised dYdX npm and PyPI Packages Deliver Malware
Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack, affecting over $1.5 trillion in cumulative trading volume.
New Data Tool Helps Orgs Prioritize Exploited Flaws Smarter
KEV Collider combines data from multiple open source vulnerability frameworks to help cybersecurity teams assess which issues need their attention first, with over 48,100 vulnerabilities reported in 2025.
Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign
React2Shell exploitation uses malicious NGINX configurations to hijack web traffic, targeting 1,083 unique source IP addresses and affecting Asian TLDs, government domains, and Baota panels.
Cyber Threats Evolve with Increased Operational Efficiency
Threat actors are leveraging automation, prebuilt frameworks, and reusable infrastructure to cut time between access and impact, with over 10,000 infected IP addresses globally tied to the SystemBC malware operation.
China-Linked Amaranth-Dragon and Mustang Panda Exploit WinRAR Flaw in Espionage Campaigns
China-linked threat actors Amaranth-Dragon and Mustang Panda target Southeast Asian governments using WinRAR exploit and PlugX phishing lures, affecting at least 6 countries.