Topic: cobalt strike
-
Notepad++ Supply Chain Attack: Details, Targets, and IoCs Revealed
A Chinese state-sponsored group exploited the Notepad++ update mechanism to deliver malware in a targeted supply chain attack, focusing on high-value victims in Southeast Asia and beyond. The attack used malicious installers to deploy sophisticated backdoors like "Chrysalis" and Cobalt Strike, em...
Read More » -
React2Shell flaw fuels ransomware attacks
The **React2Shell** vulnerability (CVE-2025-55182) is being actively exploited, allowing attackers to gain unauthorized server access and deploy ransomware in under a minute without authentication. Attackers used this flaw to deploy the **Weaxor ransomware**, a less sophisticated rebrand of older...
Read More » -
Notepad++ Updates Channel After Security Breach
Notepad++ has released a critical security update (version 8.9.2) to fix vulnerabilities in its update mechanism that were exploited to deliver malware, and users are urged to update immediately. The attack exploited unsigned update files and a lack of installer verification, allowing hackers to ...
Read More » -
Fortra Issues Critical Alert for GoAnywhere MFT Vulnerability
Fortra has issued an urgent alert for a critical vulnerability (CVE-2025-10035) in GoAnywhere MFT software, allowing remote command injection due to unsafe data deserialization. The vulnerability can be exploited without user interaction, particularly affecting internet-exposed Admin Consoles, an...
Read More »