News

React2Shell flaw (CVE-2025-55182) exploited for remote code execution

Bys s January 14, 2026

The availability of exploit code will likely lead to more widespread opportunistic attacks

Tags: Threat Research, Featured, vulnerability, react2shell

News

Why Ransomware Attacks Are Decreasing in 2025
Bys s August 11, 2025

Ogbonda Chivumnovu reports: It started like a domino effect. One by one, the biggest names in ransomware began to vanish in Q2. From LockBit, once considered the most active and resilient ransomware gang, its empire began to unravel under the pressure of global law enforcement. Then, almost in sequence, other major players, 8Base, RansomHub, and……

Read More Why Ransomware Attacks Are Decreasing in 2025
News

VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages
Bys s September 5, 2025

Cybersecurity researchers have flagged a new malware campaign that has leveraged Scalable Vector Graphics (SVG) files as part of phishing attacks impersonating the Colombian judicial system. The SVG files, according to VirusTotal, are distributed via email and designed to execute an embedded JavaScript payload, which then decodes and injects a Base64-encoded HTML phishing page masquerading…

Read More VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages
News

CISA Warns: SysAid Flaws Under Active Attack Enable Remote File Access and SSRF
Bys s July 23, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two security flaws impacting SysAid IT support software to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerabilities in question are listed below – CVE-2025-2775 (CVSS score: 9.3) – An improper restriction of XML external entity (XXE) reference vulnerability in the

Read More CISA Warns: SysAid Flaws Under Active Attack Enable Remote File Access and SSRF
News

Watch This Webinar to Uncover Hidden Flaws in Login, AI, and Digital Trust — and Fix Them
Bys s July 24, 2025

Is Managing Customer Logins and Data Giving You Headaches? You’re Not Alone! Today, we all expect super-fast, secure, and personalized online experiences. But let’s be honest, we’re also more careful about how our data is used. If something feels off, trust can vanish in an instant. Add to that the lightning-fast changes AI is bringing…

Read More Watch This Webinar to Uncover Hidden Flaws in Login, AI, and Digital Trust — and Fix Them
News

Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet
Bys s January 22, 2025

Threat actors are exploiting an unspecified zero-day vulnerability in Cambium Networks cnPilot routers to deploy a variant of the AISURU botnet called AIRASHI to carry out distributed denial-of-service (DDoS) attacks. According to QiAnXin XLab, the attacks have leveraged the security flaw since June 2024. Additional details about the shortcomings have been withheld to prevent further…

Read More Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet
News

South Korean retail giant Coupang to compensate $1.1 billion to affected users over data breach
Bys s December 29, 2025

Lim Hui Jie reports: South Korean online retail giant Coupang said it will offer 1.69 trillion South Korean won ($1.17 billion) in compensation to 34 million users affected by a massive data breach disclosed last month. The company said in a statement Monday local time that it planned to provide customers with purchase vouchers totaling 50,000 won for various……

Read More South Korean retail giant Coupang to compensate $1.1 billion to affected users over data breach

Similar Posts