Security researchers at Sekoia have uncovered a sophisticated cyber espionage campaign where the threat actor group ViciousTrap has compromised over 5,300 edge network devices across 84 countries. The attackers have transformed these compromised devices into an extensive network of honeypots, designed to collect intelligence on emerging cyber attack methodologies and zero-day vulnerabilities. Critical Cisco Vulnerability … Read more

A significant security breach has struck the decentralized exchange Cetus Protocol, resulting in a staggering $223 million cryptocurrency theft. The incident, which ranks among the largest DeFi exploits of recent times, has sent shockwaves through the cryptocurrency ecosystem and highlighted critical vulnerabilities in decentralized finance platforms. Technical Analysis of the Security Breach Blockchain security firm … Read more

Security researchers at Socket have uncovered a sophisticated cyber attack targeting the JavaScript development community through npm, discovering eight malicious packages that masqueraded as legitimate development tools. These compromised packages, downloaded over 6,200 times during a two-year period, pose a significant threat to JavaScript development ecosystems and highlight the growing sophistication of supply chain attacks. … Read more

Microsoft has identified a significant security vulnerability affecting Windows 10 and Windows 10 Enterprise LTSC 2021 systems following the installation of the May security update KB5058379. The issue triggers unexpected BitLocker recovery mode boots, potentially causing substantial disruptions to enterprise infrastructure operations and system accessibility. Technical Analysis of the BitLocker Recovery Issue The problem manifests … Read more

Kaspersky Lab researchers have uncovered a sophisticated large-scale malware campaign targeting Docker container environments with the Dero cryptocurrency miner. The attack leverages automated exploitation techniques against unsecured Docker APIs, posing a significant threat to organizations utilizing container infrastructure for their operations. Attack Surface and Target Profile The campaign primarily targets technology companies, software developers, hosting … Read more

Cybersecurity researchers at Infoblox have uncovered a sophisticated DNS hijacking campaign orchestrated by the threat actor group known as Hazy Hawk. The attackers are exploiting vulnerable DNS infrastructure to commandeer subdomains of prestigious organizations through abandoned CNAME records, demonstrating an advanced understanding of DNS mechanics and cloud service dynamics. Technical Analysis: The CNAME Exploitation Method … Read more

Sophos cybersecurity researchers have uncovered an alarming new attack pattern employed by the 3AM ransomware group, combining sophisticated social engineering techniques with aggressive phishing campaigns. This hybrid approach, documented between November 2024 and January 2025, marks a significant evolution in ransomware attack methodologies. Advanced Attack Methodology: A New Threat Landscape Security analysts have identified over … Read more

Security researchers at ETH Zurich have uncovered a significant security vulnerability affecting modern Intel processors, dubbed “branch privilege injection” (CVE-2024-45332). This hardware-level flaw impacts all Intel CPU generations from the 9th forward, potentially exposing sensitive data to unauthorized access through sophisticated exploitation techniques. Technical Analysis: Understanding the Branch Prediction Vulnerability The vulnerability exploits fundamental weaknesses … Read more

A significant security breach has been uncovered in official Procolored printer software, with cybersecurity firm G Data revealing that the manufacturer inadvertently distributed malware-infected software capable of stealing cryptocurrency. The compromise, which remained undetected for at least six months, has potentially affected thousands of users worldwide. Discovery and Scope of the Security Breach The security … Read more

Security researchers at Codean Labs have discovered a severe vulnerability in the widely-used OpenPGP.js encryption library, potentially compromising the integrity of signed and encrypted communications. The flaw, assigned CVE-2025-47934 with a CVSS score of 8.7, affects versions 5 and 6 of the library, enabling attackers to forge seemingly legitimate signed messages. Technical Analysis of the … Read more