New Red Teaming Tool RedTiger Attacking Gamers and Discord Accounts in the Wild
RedTiger is an open-source red-teaming tool repurposed by attackers to steal sensitive data from Discord users and gamers.
Released in 2025 on GitHub, RedTiger bundles...
Volkswagen Allegedly Hit by Ransomware Attack as 8Base Claims Sensitive Data Theft
Volkswagen Group has issued a statement addressing claims by the ransomware group 8Base, which alleges it has stolen and leaked sensitive data from the...
Microsoft Disrupted Vanilla Tempest Attack by Revoking Certificates Used to Sign Fake Teams File
Microsoft announced that it had revoked more than 200 digital certificates exploited by the notorious Vanilla Tempest hacking group.
This action effectively disrupted an ongoing...
Cisco SNMP 0-Day Vulnerability Actively Exploited To Deploy Linux Rootkits
A sophisticated attack campaign dubbed "Operation Zero Disco," where threat actors are actively exploiting a critical Cisco Simple Network Management Protocol (SNMP) vulnerability to...
.webp?w=324&resize=324,235&ssl=1 "BlackSuit Ransomware Actors Breached Corporate Environment, Including 60+ VMware ESXi Hosts")
BlackSuit Ransomware Actors Breached Corporate Environment, Including 60+ VMware ESXi Hosts
The BlackSuit ransomware group, tracked as Ignoble Scorpius by cybersecurity experts, devastated a prominent manufacturer's operations.
The attack, detailed in a recent Unit 42 report...
Hackers Attacking Remote Desktop Protocol Services from 100,000+ IP Addresses
A massive, coordinated botnet campaign is actively targeting Remote Desktop Protocol (RDP) services across the United States.
Security firm GreyNoise reported on October 8, 2025,...
Chinese Hackers Weaponized Nezha Tool to Execute Commands on Web Server
A sophisticated cyberattack campaign, active since August 2025, where a China-nexus threat actor has been weaponizing a legitimate server operations tool called Nezha to...
CrowdStrike Warns of New Mass Exploitation Campaign Leveraging Oracle E-Business Suite 0-Day
A widespread campaign observed exploiting a novel zero-day vulnerability in Oracle E-Business Suite (EBS) applications, now tracked as CVE-2025-61882.
First observed on August 9, 2025,...
GoAnywhere 0-Day RCE Vulnerability Exploited in the Wild to Deploy Medusa Ransomware
A critical deserialization flaw in GoAnywhere MFT's License Servlet, tracked as CVE-2025-10035, has already been weaponized by the Storm-1175 group to execute the Medusa...
Cl0p Ransomware Actively Exploiting Oracle E-Business Suite 0-Day Vulnerability in the Wild
Oracle has issued an emergency security alert for a critical zero-day vulnerability (CVE-2025-61882) in its E-Business Suite after the notorious Cl0p ransomware group began...
.webp?w=100&resize=100,70&ssl=1 "Top 10 Best Fraud Prevention Companies in 2025")
