Topic: malware payloads

Sort by: Relevance | Date
  • Unpatched Gogs Bug Actively Exploited, CISA Warns
    January 14, 2026

    Unpatched Gogs Bug Actively Exploited, CISA Warns

    A critical vulnerability (CVE-2025-8110) in the Gogs platform is being actively exploited, allowing authenticated users to achieve remote code execution by overwriting files via a symbolic link flaw. Over 700 Gogs instances have already been compromised, with no official patch yet available, thou...

    Read More »
  • Urgent Windows 0-Day and Critical Flaw Actively Exploited
    November 1, 2025

    Urgent Windows 0-Day and Critical Flaw Actively Exploited

    Two critical Windows vulnerabilities are being actively exploited in widespread global attacks, including a zero-day flaw used since 2017 and another that Microsoft failed to patch in a recent update. The zero-day vulnerability (CVE-2025-9491) has been exploited by up to eleven advanced threat gr...

    Read More »
  • Malicious npm Packages Target Ethereum Smart Contracts
    September 5, 2025

    Malicious npm Packages Target Ethereum Smart Contracts

    A new wave of malicious npm packages uses Ethereum smart contracts to hide command-and-control infrastructure, making detection more difficult. Attackers also created fake GitHub repositories with artificially inflated metrics to appear legitimate and target cryptocurrency developers. This campai...

    Read More »

Related Topics

security research (1) zero-day exploit (1) apt groups (1) Supply Chain Attacks (1) affected versions (1) vulnerability tracking (1) reversinglabs research (1) cisa warning (1)