Intel
Recently, a significant cybersecurity threat has emerged, affecting over 16,000 Fortinet devices worldwide. These devices have been compromised with a symlink backdoor, granting attackers read-only access to sensitive files on previously breached systems. This alarming situation highlights the ongoing risks associated with cyberattacks and the importance of robust security
An emerging ransomware group known as "CrazyHunter" has been identified as a significant threat to Taiwanese organizations, particularly in vital sectors such as healthcare and education. This group has gained attention for its sophisticated attack methods and reliance on open-source tools. CrazyHunter's Tactics and Tools According
The Apache Roller blogging platform recently addressed a critical vulnerability that could allow persistent unauthorized access even after users changed their passwords. This flaw, identified as CVE-2025-24859, stemmed from inadequate session expiration, which failed to invalidate active user sessions following a password update. The Apache Software Foundation (ASF) has introduced
A new spear-phishing campaign orchestrated by the Russian state-sponsored group Midnight Blizzard is targeting diplomatic entities across Europe. This campaign introduces a novel malware loader named 'GrapeLoader' alongside a new variant of the 'WineLoader' backdoor. Overview of the Cyberattack Midnight Blizzard, also known as 'Cozy
Ongoing exploitation of a critical vulnerability in CrushFTP file transfer software continues to raise concerns, as a disclosure dispute unfolds. The vulnerability, identified as CVE-2025-31161, involves an authentication bypass flaw and was added to the Cybersecurity and Infrastructure Security Agency's (CISA) Known Exploited Vulnerabilities catalog on April 7.
A newly disclosed security flaw in WhatsApp for Windows, identified as CVE-2025-30401, has raised significant concerns among cybersecurity experts. This vulnerability allowed attackers to send seemingly harmless attachments that could execute malicious code when opened within the app. The issue affected all versions prior to 2.2450.6, posing a
Fortinet has issued crucial security updates to address a severe vulnerability in FortiSwitch devices. This flaw could allow attackers to change admin passwords without authorization, posing a significant risk to network security. Understanding the Vulnerability The vulnerability, identified as CVE-2024-48887, has been assigned a CVSS score of 9.3, indicating
The notorious RansomEXX ransomware group has been actively exploiting a critical zero-day vulnerability in the Windows Common Log File System (CLFS) to escalate privileges on compromised systems. This vulnerability, identified as CVE-2025-29824, allows attackers to gain SYSTEM-level access through low-complexity attacks that do not require user interaction. Microsoft addressed this
Cybercriminals are exploiting SourceForge to disseminate counterfeit Microsoft add-ins that install malware on victims' systems, aiming to mine and steal cryptocurrency. SourceForge.net, a reputable platform for software hosting and distribution, is popular among open-source communities for its version control, bug tracking, and forums. Despite its open submission model,