News

Microsoft stacks up 113 CVEs for January Patch Tuesday

Bys s January 20, 2026

Categories: X-ops

Tags: Patch Tuesday, Microsoft, Windows

News

Critical CVE-2025-5086 in DELMIA Apriso Actively Exploited, CISA Issues Warning
Bys s September 12, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical security flaw impacting Dassault Systèmes DELMIA Apriso Manufacturing Operations Management (MOM) software to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerability, tracked as CVE-2025-5086, carries a CVSS score of 9.0 out of 10.0. According to

Read More Critical CVE-2025-5086 in DELMIA Apriso Actively Exploited, CISA Issues Warning
News

Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux
Bys s March 4, 2026

Cybersecurity researchers have flagged malicious Packagist PHP packages masquerading as Laravel utilities that act as a conduit for a cross-platform remote access trojan (RAT) that’s functional on Windows, macOS, and Linux systems. The names of the packages are listed below – nhattuanbl/lara-helper (37 Downloads) nhattuanbl/simple-queue (29 Downloads) nhattuanbl/lara-swagger (49 Downloads)

Read More Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux
News

AI Won’t Take This Job: Microsoft Says Human Ingenuity Crucial to Red-Teaming
Bys s January 13, 2025

Redmond’s AI Red Team says human involvement remains irreplaceable in addressing nuanced risks. The post AI Won’t Take This Job: Microsoft Says Human Ingenuity Crucial to Red-Teaming appeared first on SecurityWeek.

Read More AI Won’t Take This Job: Microsoft Says Human Ingenuity Crucial to Red-Teaming
News

Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling
Bys s August 30, 2025

Cybersecurity researchers have called attention to a cyber attack in which unknown threat actors deployed an open-source endpoint monitoring and digital forensic tool called Velociraptor, illustrating ongoing abuse of legitimate software for malicious purposes. “In this incident, the threat actor used the tool to download and execute Visual Studio Code with the likely intention of…

Read More Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling
News

Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools
Bys s May 4, 2026

An active phishing campaign has been observed targeting multiple vectors since at least April 2025, with legitimate Remote Monitoring and Management (RMM) software as a way to establish persistent remote access to compromised hosts. The activity, codenamed VENOMOUS#HELPER, has impacted over 80 organizations, most of which are in the U.S., according to Securonix. It shares…

Read More Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools
News

Cybercriminals Use Fake Apps to Steal Data and Blackmail Users Across Asia’s Mobile Networks
Bys s July 29, 2025

Cybersecurity researchers have discovered a new, large-scale mobile malware campaign that’s targeting Android and iOS platforms with fake dating, social networking, cloud storage, and car service apps to steal sensitive personal data. The cross-platform threat has been codenamed SarangTrap by Zimperium zLabs. Users in South Korea appear to be the primary focus. “This extensive campaign…

Read More Cybercriminals Use Fake Apps to Steal Data and Blackmail Users Across Asia’s Mobile Networks

Similar Posts