CISA Flags Adobe AEM Flaw with Perfect 10.0 Score — Already Under Active Attack Summary The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2025-54253 — a maximum-severity (CVSS…
F5 Breach Exposes BIG-IP Source Code — Nation-State Hackers Behind Massive Intrusion Summary F5 disclosed that an unidentified, “highly sophisticated nation-state” threat actor breached its systems and exfiltrated files containing…
Over 100 VS Code Extensions Exposed Developers to Hidden Supply Chain Risks Summary Research by Wiz revealed that publishers of over 100 Visual Studio Code extensions inadvertently leaked personal access…
Two New Windows Zero-Days Exploited in the Wild — One Affects Every Version Ever Shipped Summary Microsoft released security updates covering 183 vulnerabilities across its products. Three flaws are confirmed…
LinkPro Linux Rootkit Uses eBPF to Hide and Activates via Magic TCP Packets Summary Researchers at Synacktiv uncovered a new GNU/Linux rootkit called LinkPro after investigating an AWS-hosted compromise. Attackers…
Researchers Uncover WatchGuard VPN Bug That Could Let Attackers Take Over Devices Summary Security researchers have disclosed a critical out-of-bounds write vulnerability in WatchGuard Fireware OS (CVE-2025-9242, CVSS 9.3) that…
Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign Summary Microsoft disclosed it has revoked more than 200 code-signing certificates abused by a threat actor tracked as Vanilla Tempest…
North Korean Hackers Use EtherHiding to Hide Malware Inside Blockchain Smart Contracts Summary Author style: Punchy — this piece flags a clear escalation: a DPRK-linked group has adopted EtherHiding to…
Hackers Abuse Blockchain Smart Contracts to Spread Malware via Infected WordPress Sites Summary Google’s Threat Intelligence Group (GTIG) has documented a financially motivated actor tracked as UNC5142 that leverages compromised…
North Korean Hackers Combine BeaverTail and OtterCookie into Advanced JS Malware Summary Cisco Talos has observed a North Korean-linked threat cluster (tracked under many names including Famous Chollima and UNC5342)…
