Month: June 2025
-
May 2025 Infostealer Trend Report
This analysis examines the distribution trends of Infostealer malware in May 2025. It highlights the use of SEO poisoning to…
-
May 2025 APT Group Trends (South Korea)
This analysis examines Advanced Persistent Threat (APT) attacks in South Korea during May 2025. The majority of identified attacks utilized…
-
Critical Langflow Vulnerability (CVE20253248) Actively Exploited to Deliver Flodrix Botnet
An active campaign is exploiting CVE-2025-3248, a critical vulnerability in Langflow versions before 1.3.0, to deliver the Flodrix botnet. Attackers…
-
Fog Ransomware: Unusual Toolset Used in Recent Attack
A financial institution in Asia was targeted by Fog ransomware in May 2025, using an atypical toolset including legitimate employee…
-
Uncovering a TorEnabled Docker Exploit
A sophisticated attack campaign exploits exposed Docker Remote APIs and leverages the Tor network to deploy stealthy cryptocurrency miners. The…
-
AsyncRAT Campaign Continues to Evade Endpoint Detection
A wide-ranging phishing campaign has been identified that enables threat actors to bypass traditional security controls and delay detection. The…
-
More Steganography!
A malicious Excel file using steganography was analyzed, revealing embedded XLS sheets and a complex infection chain. The file downloads…
-
Clone, Compile, Compromise: OpenSource Malware Trap on GitHub
A newly identified threat actor, Water Curse, is exploiting GitHub to deliver weaponized repositories containing multistage malware. The group has…
-
Over 46,000 Grafana instances exposed to account takeover bug
More than 46,000 internet-facing Grafana instances remain unpatched and exposed to a…
-
ChatGPT Search gets an upgrade as OpenAI takes aim at Google
On June 13, OpenAI began rolling out a new ChatGPT Search update to improve quality as the AI startup challenges…