News

React2Shell flaw (CVE-2025-55182) exploited for remote code execution

Bys s January 14, 2026

The availability of exploit code will likely lead to more widespread opportunistic attacks

Tags: Threat Research, Featured, vulnerability, react2shell

News

Oregon court dismisses lawsuit over 2023 MOVEit data breach affecting 3.5 million Oregonians
Bys s April 26, 2025

While the ransomware attack on the Oregon Department of Environmental Equality (DQE) is making headlines this month, there was also an update to a lawsuit stemming from the MOVEit breach in 2023 that affected 3.5 million Oregonians whose driver’s license and identity information was held by the Oregon Driver and Motor Vehicle Services. Aimee Green…

Read More Oregon court dismisses lawsuit over 2023 MOVEit data breach affecting 3.5 million Oregonians
News

Cybersecurity in the AI Era: Evolve Faster Than the Threats or Get Left Behind
Bys s April 14, 2025

AI is changing cybersecurity faster than many defenders realize. Attackers are already using AI to automate reconnaissance, generate sophisticated phishing lures, and exploit vulnerabilities before security teams can react. Meanwhile, defenders are overwhelmed by massive amounts of data and alerts, struggling to process information quickly enough to identify real threats. AI offers a way to

Read More Cybersecurity in the AI Era: Evolve Faster Than the Threats or Get Left Behind
News

When Good Extensions Go Bad: Takeaways from the Campaign Targeting Browser Extensions
By December 30, 2024

News has been making headlines over the weekend of the extensive attack campaign targeting browser extensions and injecting them with malicious code to steal user credentials. Currently, over 25 extensions, with an install base of over two million users, have been found to be compromised, and customers are now working to figure out their exposure…

Read More When Good Extensions Go Bad: Takeaways from the Campaign Targeting Browser Extensions
News

PNGPlug Loader Delivers ValleyRAT Malware Through Fake Software Installers
Bys s January 21, 2025

Cybersecurity researchers are calling attention to a series of cyber attacks that have targeted Chinese-speaking regions like Hong Kong, Taiwan, and Mainland China with a known malware called ValleyRAT. The attacks leverage a multi-stage loader dubbed PNGPlug to deliver the ValleyRAT payload, Intezer said in a technical report published last week. The infection chain commences…

Read More PNGPlug Loader Delivers ValleyRAT Malware Through Fake Software Installers
News

New UEFI Flaw Enables Early-Boot DMA Attacks on ASRock, ASUS, GIGABYTE, MSI Motherboards
Bys s December 19, 2025

Certain motherboard models from vendors like ASRock, ASUSTeK Computer, GIGABYTE, and MSI are affected by a security vulnerability that leaves them susceptible to early-boot direct memory access (DMA) attacks across architectures that implement a Unified Extensible Firmware Interface (UEFI) and input–output memory management unit (IOMMU). UEFI and IOMMU are designed to enforce a security

Read More New UEFI Flaw Enables Early-Boot DMA Attacks on ASRock, ASUS, GIGABYTE, MSI Motherboards
News

ShinyHunters sent Google an extortion demand; Shiny comments on current activities
Bys s August 8, 2025

Yesterday morning, DataBreaches woke up to a message on Telegram: Even the NSA can’t stop or identify us anymore. The FBI and everyone else is irrelevant and incompetent as far as we’re concerned :). When DataBreaches asked ShinyHunters if anything in particular had inspired that statement, “Shiny1” responded: I heard the NSA is investigating and…

Read More ShinyHunters sent Google an extortion demand; Shiny comments on current activities

Similar Posts