Ionut Arghire

The software update includes additional file checks and helps users remove the known rootkit deployed in a recent campaign.

Tracked as CVE-2025-59689, the command injection bug could be triggered via malicious emails containing crafted compressed attachments.

CVE-2025-26399 is a patch bypass of CVE-2024-28988, which is a patch bypass of the exploited CVE-2024-28986.

The company will expand its platform’s capabilities and accelerate investigative collaboration and go-to-market efforts.

The botnet’s operators provide customers with access to an infected network of Docker containers so they can conduct DDoS attacks.

The juvenile suspect surrendered on September 17 and was booked on computer intrusion, extortion, and identity theft charges.

The company says customer contact information was stolen from a third-party service provider’s platform.

L1TF Reloaded is a vulnerability combining the old L1TF and half-Spectre hardware flaws to bypass deployed software mitigations.

Threat actors rely on malicious GitHub repositories to infect LastPass’s macOS users with the Atomic infostealer.

Threat actors likely spoofed the official government website for personal information theft and monetary fraudulent activity.

Tracked as CVE-2025-10035 (CVSS score of 10), the critical deserialization vulnerability could be exploited for command injection.

Turla malware was deployed in February on select systems that Gamaredon had compromised in January.

Hackers chained two Ivanti EPMM vulnerabilities to collect system information, dump credentials, and execute malware.

The AI agent was able to solve different types of CAPTCHAs and adjusted its cursor movements to better mimic human behavior.

Thalha Jubair and Owen Flowers were charged in the UK and the US with hacking critical infrastructure organizations.

RevengeHotels has been targeting hotels in Brazil and Spanish-speaking regions with VenomRAT implants in 2025.

The company sent a new preferences file to less than 5% of customers, urging them to import it into firewalls and reset their passwords.

The top-performing venture fund heavily invests in startups building cybersecurity, AI, and enterprise software.

An exploited type confusion in the V8 JavaScript engine tracked as CVE-2025-10585 was found by Google Threat Analysis Group this week.

The campaign targeted US government, think tank, and academic entities involved in US-China relations, international trade, and economic policy.