Topic: malware deployment

Sort by: Relevance | Date
  • Phishing Leads EU Cyber Intrusions, ENISA Reports
    October 9, 2025
    85%

    Phishing Leads EU Cyber Intrusions, ENISA Reports

    Phishing was the leading initial attack method in the EU, responsible for 60% of intrusions, with outdated mobile and OT systems being prime targets. DDoS attacks comprised 77% of all incidents, largely driven by hacktivism, but only 2% caused service disruptions, with groups like NoName057(16) e...

    Read More »
  • Microsoft Outlook Blocks Malicious SVG Image Attacks
    October 4, 2025
    85%

    Microsoft Outlook Blocks Malicious SVG Image Attacks

    Microsoft has blocked potentially dangerous inline SVG images in Outlook to counter rising cyberattacks exploiting this format, with a global rollout from early September to mid-October 2025. The update affects fewer than 0.1% of images, showing empty spaces for blocked SVGs while still supportin...

    Read More »
  • 60,000 Redis Servers Exposed by Critical Security Flaw
    October 13, 2025
    84%

    60,000 Redis Servers Exposed by Critical Security Flaw

    A critical vulnerability (CVE-2025-49844) in Redis, rated 10.0 in severity, allows attackers to gain full control over servers by exploiting a flaw in the Lua scripting engine that has existed for 13 years. Approximately 60,000 publicly accessible Redis servers with no authentication are at direc...

    Read More »
  • Urgent: 50,000 Cisco Firewalls at Risk From Active Attacks
    October 1, 2025
    80%

    Urgent: 50,000 Cisco Firewalls at Risk From Active Attacks

    Attackers are actively exploiting critical vulnerabilities CVE-2025-20333 and CVE-2025-20362 in around 50,000 Cisco ASA and FTD devices, enabling unauthorized remote code execution and access without authentication. Over 48,800 internet-facing devices remain unpatched, primarily in the U.S., with...

    Read More »
  • How 'Murky Panda' Hackers Breach Cloud Customers
    August 24, 2025
    80%

    How 'Murky Panda' Hackers Breach Cloud Customers

    A Chinese state-sponsored hacking group known as Murky Panda or Silk Typhoon exploits trusted cloud service relationships to infiltrate networks of government, tech, and academic organizations, particularly in North America. The group uses sophisticated tactics such as compromising cloud provider...

    Read More »
  • ClickFix Exploits MHSTA to Evade Security for Infostealers
    June 19, 2025
    80%

    ClickFix Exploits MHSTA to Evade Security for Infostealers

    ClickFix is a growing social engineering tactic that tricks users into executing harmful commands by pretending to fix system issues, often through deceptive pop-ups. ClickFix has driven a 10% increase in drive-by compromises and is now the second most common evasion technique, often exploiting t...

    Read More »
  • North Korean Hackers Stole $2 Billion in Crypto This Year
    October 20, 2025
    75%

    North Korean Hackers Stole $2 Billion in Crypto This Year

    North Korean hackers have stolen over $2 billion in cryptocurrency in 2025, primarily through a major breach at Bybit and numerous other attributed attacks, with the actual total likely higher due to unreported incidents. The groups have shifted tactics to focus on social engineering, targeting h...

    Read More »
  • CISA Mandates Urgent Patching for Actively Exploited Cisco Zero-Day Flaws
    September 27, 2025
    75%

    CISA Mandates Urgent Patching for Actively Exploited Cisco Zero-Day Flaws

    CISA has issued an emergency directive requiring U.S. federal agencies to immediately address two actively exploited critical vulnerabilities (CVE-2025-20333 and CVE-2025-20362) in Cisco ASA and FTD firewalls, which allow unauthenticated remote code execution. Agencies must inventory all affected...

    Read More »
  • Sharepoint ToolShell Attacks Strike Global Orgs on 4 Continents
    October 23, 2025
    70%

    Sharepoint ToolShell Attacks Strike Global Orgs on 4 Continents

    The ToolShell vulnerability (CVE-2025-53770) in Microsoft SharePoint is a critical zero-day flaw that allows unauthenticated remote attackers to execute arbitrary code and access file systems, bypassing previous vulnerabilities. Microsoft attributes the exploitation to Chinese threat actors like ...

    Read More »
  • Microsoft Secures IE Mode After Hackers Exploit Legacy Backdoor
    October 16, 2025
    70%

    Microsoft Secures IE Mode After Hackers Exploit Legacy Backdoor

    Microsoft has strengthened Internet Explorer mode security in Edge after attackers exploited zero-day vulnerabilities in August 2025, using social engineering to compromise systems. Attackers tricked users into reloading pages in IE mode, leveraging Chakra engine exploits for remote code executio...

    Read More »
  • Critical Redis Flaw Exposes Thousands of Instances
    October 8, 2025
    70%

    Critical Redis Flaw Exposes Thousands of Instances

    A critical security vulnerability (CVE-2025-49844) in Redis allows authenticated attackers to execute remote code via a use-after-free flaw in Lua scripting, posing a severe risk to systems. The flaw affects a vast number of organizations due to Redis's widespread use in cloud environments, and i...

    Read More »

Related Topics

remote code execution (59) social engineering (68) lateral movement (26) cloud security (74) data exfiltration (56) vulnerability exploitation (39) phishing attacks (36) security recommendations (35)