News

Microsoft Office vulnerability (CVE-2026-21509) in active exploitation

Bys s January 28, 2026

Categories: Threat Research

Tags: Microsoft Office, vulnerability, advisory

News

Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks
Bys s June 11, 2025

Former members tied to the Black Basta ransomware operation have been observed sticking to their tried-and-tested approach of email bombing and Microsoft Teams phishing to establish persistent access to target networks. “Recently, attackers have introduced Python script execution alongside these techniques, using cURL requests to fetch and deploy malicious payloads,” ReliaQuest said in a report

Read More Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks
News

From sizzle to drizzle to fizzle: The massive data leak that wasn’t
Bys s October 12, 2025

After days of endlessly urging Salesforce or companies to pay them so that their data would not be leaked, the deadline for Salesforce to pay came and went. And as it went, ScatteredLAPSUS$Hunters leaked data from six of the 39 companies listed on its dark web leak site. But that’s where the massive leak that……

Read More From sizzle to drizzle to fizzle: The massive data leak that wasn’t
News

WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide
Bys s November 19, 2025

A newly discovered campaign has compromised tens of thousands of outdated or end-of-life (EoL) ASUS routers worldwide, predominantly in Taiwan, the U.S., and Russia, to rope them into a massive network. The router hijacking activity has been codenamed Operation WrtHug by SecurityScorecard’s STRIKE team. Southeast Asia and European countries are some of the other regions…

Read More WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide
News

CISA Flags TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377 as Actively Exploited
Bys s September 4, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws impacting TP-Link wireless routers to its Known Exploited Vulnerabilities (KEV) catalog, noting that there is evidence of them being exploited in the wild. The vulnerabilities in question are listed below – CVE-2023-50224 (CVSS score: 6.5) – An authentication bypass by spoofing…

Read More CISA Flags TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377 as Actively Exploited
News

Mirai Variant Murdoc_Botnet Exploits AVTECH IP Cameras and Huawei Routers
Bys s January 21, 2025

Cybersecurity researchers have warned of a new large-scale campaign that exploits security flaws in AVTECH IP cameras and Huawei HG532 routers to rope the devices into a Mirai botnet variant dubbed Murdoc_Botnet. The ongoing activity “demonstrates enhanced capabilities, exploiting vulnerabilities to compromise devices and establish expansive botnet networks,” Qualys security researcher Shilpesh

Read More Mirai Variant Murdoc_Botnet Exploits AVTECH IP Cameras and Huawei Routers
News

Microsoft Discloses Exchange Server Flaw Enabling Silent Cloud Access in Hybrid Setups
Bys s August 7, 2025

Microsoft has released an advisory for a high-severity security flaw affecting on-premise versions of Exchange Server that could allow an attacker to gain elevated privileges under certain conditions. The vulnerability, tracked as CVE-2025-53786, carries a CVSS score of 8.0. Dirk-jan Mollema with Outsider Security has been acknowledged for reporting the bug. “In an Exchange hybrid…

Read More Microsoft Discloses Exchange Server Flaw Enabling Silent Cloud Access in Hybrid Setups

Similar Posts