Attackers exploit valid logins in SonicWall SSL VPN compromise
Attackers exploit valid logins in SonicWall SSL VPN compromise Pierluigi Paganini October 11, 2025 Huntress warns of widespread SonicWall SSL VPN breaches, with attackers using…
Month: October 2025
Experts Warn of Widespread SonicWall VPN Compromise Impacting Over 100 Accounts
Oct 11, 2025Ravie LakshmananCloud Security / Network Security Cybersecurity company Huntress on Friday warned of “widespread compromise” of SonicWall SSL VPN devices to access multiple…
Hackers Turn Velociraptor DFIR Tool Into Weapon in LockBit Ransomware Attacks
Oct 11, 2025Ravie LakshmananNetwork Security / Vulnerability Threat actors are abusing Velociraptor, an open-source digital forensics and incident response (DFIR) tool, in connection with ransomware…
Microsoft Fixes Long-standing Windows 11 ‘Update and Shut down’ Bug
Microsoft has rolled out a fix in its latest preview builds to resolve a notorious glitch with the “update and shut down” feature. This long-standing issue, which has haunted the operating system for years, tricked users into believing their…
5 Immediate Steps to be Followed After Clicking on a Malicious Link
Clicking on a malicious link can quickly turn your device into a security risk. Just seconds after clicking, your browser might start downloading malware, taking…
‘Happy Gilmore’ Producer Buys Spyware Maker NSO Group
Research published this week indicates that North Korean scammers are trying to trick US companies into hiring them for architectural design work, using fake profiles,…
New Stealit Malware Exploits Node.js Extensions to Target Windows Systems
Security researchers have identified a new, active campaign of the Stealit malware that uses an experimental Node.js feature to infect Windows systems. According to a…
Hackers Attacking Remote Desktop Protocol Services from 100,000+ IP Addresses
A massive, coordinated botnet campaign is actively targeting Remote Desktop Protocol (RDP) services across the United States. Security firm GreyNoise reported on October 8, 2025,…
New Kali Tool llm-tools-nmap Uses Nmap For Network Scanning Capabilities
Along with the release of Kali Linux 2025.3, a major update introduces an innovative tool that combines artificial intelligence and cybersecurity: the llm-tools-nmap. A new experimental…
RondoDox IoT botnet swells to 56 exploits in shotgun campaign
Multiple security researchers have detailed a large escalation in the RondoDox Internet of Things (IoT) botnet campaign, which now weaponises 56 vulnerabilities across more than…
Apple doubles maximum bug bounty to $2M for zero-click RCEs
Apple doubles maximum bug bounty to $2M for zero-click RCEs Pierluigi Paganini October 10, 2025 Apple raised bug bounties to $2M for zero-click RCEs, doubling…
New Polymorphic Malware Undetected By Security Tools
A new polymorphic malware identified by a security researcher earlier this week remains undetected by most security tools. Xavier Mertens wrote about the malware in…