Topic: active directory reconnaissance

Sort by: Relevance | Date
  • Sitecore Zero-Day Exploit Actively Attacked (CVE-2025-53690)
    September 6, 2025
    73%

    Sitecore Zero-Day Exploit Actively Attacked (CVE-2025-53690)

    A critical zero-day vulnerability (CVE-2025-53690) in Sitecore on-premises deployments is being actively exploited, allowing unauthorized access and remote code execution. Attackers leverage a known sample ASP.NET machine key to exploit ViewState deserialization, enabling them to deploy malware, ...

    Read More »
  • Termite Ransomware Tied to ClickFix CastleRAT Attacks
    March 9, 2026
    70%

    Termite Ransomware Tied to ClickFix CastleRAT Attacks

    The Velvet Tempest cybercrime group uses a social engineering technique called ClickFix, tricking users into executing a malicious command that initiates an infection chain leveraging legitimate Windows tools to deploy malware like CastleRAT and DonutLoader. Initial access is achieved through mal...

    Read More »
  • Hackers Use SolarWinds Flaws to Deploy DFIR Tool in Attacks
    February 12, 2026
    70%

    Hackers Use SolarWinds Flaws to Deploy DFIR Tool in Attacks

    Cybersecurity researchers have identified an active campaign exploiting critical vulnerabilities (CVE-2025-40551 and CVE-2025-26399) in SolarWinds Web Help Desk software to gain unauthorized access and deploy legitimate tools for malicious purposes. Attackers establish persistent control by insta...

    Read More »

Related Topics

indicators of compromise (2) vulnerability exploitation (1) powershell scripting (1) persistence mechanisms (1) cybersecurity threats (1) double-extortion attacks (1) threat attribution (1) remote code execution (1)