Belarus-Linked Ghostwriter Uses Macropack-Obfuscated Excel Macros to Deploy Malware
Feb 25, 2025Ravie LakshmananMalware / Cyber Espionage Opposition activists in Belarus as well as Ukrainian military and government organizations are...
Read more →News Archive
View All →
New Auto-Color Linux backdoor targets North American govts, universities
A previously undocumented Linux backdoor dubbed ‘Auto-Color’ was observed in attacks between November and December 2024, targeting universities and government...
Read more →
Sliver C2 Server Vulnerability Let Attackers Open a TCP connection to Read Traffic
A critical server-side request forgery (SSRF) vulnerability (CVE-2025-27090) has been identified in the Sliver C2 framework’s teamserver implementation, enabling attackers...
Read more →
Orange data breach details after HellCat Ransomware Attack
Orange Group, a telecom services provider based in France, has confirmed that one of its internal systems at its Romanian...
Read more →
LightSpy Expands to 100+ Commands, Increasing Control Over Windows, macOS, Linux, and Mobile
Cybersecurity researchers have flagged an updated version of the LightSpy implant that comes equipped with an expanded set of data...
Read more →
More than 400 SonicWall firewall instances remain vulnerable to attack
Dive Brief: More than 5,000 instances of an authentication bypass flaw in SonicWall firewalls are exposed to the internet and...
Read more →
UAC-0212 Hackers Launching Destructive Attack Targeting Critical Infrastructure
A sophisticated threat cluster tracked as UAC-0212 has escalated efforts to compromise critical infrastructure systems in Ukraine, according to a...
Read more →
Hackers Exploit Fake GitHub Repositories to Spread GitVenom Malware
Kaspersky’s Securelist exposes the GitVenom campaign involving fake GitHub repositories to distribute malware. Targeting developers with seemingly legitimate open-source projects,...
Read more →
AI is coming for your passwords – better make them strong
Weak passwords, as various studies have shown, can be cracked in a second, but now AI can crack even stronger...
Read more →
US drug testing firm says data breach impacted 3.3 million people
DISA Global Solutions, a leading US background screening and drug and alcohol testing firm, has suffered a data breach impacting...
Read more →
LightSpy Expanded With 100+ Commands to Attack Android, iOS, Windows, macOS & Linux Users
The LightSpy advanced persistent threat (APT) group has significantly upgraded its surveillance capabilities with a 100+ command framework targeting Android,...
Read more →
Malicious npm Package Targets Developers for Supply Chain Attack
The Socket Research Team has uncovered a malicious npm package@ton-wallet/create designed to steal sensitive cryptocurrency wallet keys from developers and...
Read more →