Trust Wallet Chrome Extension Hack Drains $8.5M via Shai-Hulud Supply Chain Attack
iT4iNT SERVER Trust Wallet on Tuesday revealed that the second iteration of the Shai-Hulud (aka Sha1-Hulud) supply chain outbreak in November 2025 wa…
Showing posts from December, 2025Show all
IBM Warns of Critical API Connect Bug Allowing Remote Authentication Bypass
iT4iNT SERVER IBM has disclosed details of a critical security flaw in API Connect that could allow attackers to gain remote access to the applicatio…
U.S. Treasury Lifts Sanctions on Three Individuals Linked to Intellexa and Predator Spyware
iT4iNT SERVER The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) on Tuesday removed three individuals linked to the In…
CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution
iT4iNT SERVER The Cyber Security Agency of Singapore (CSA) has issued a bulletin warning of a maximum-severity security flaw in SmarterTools SmarterM…
Mustang Panda Uses Signed Kernel-Mode Rootkit to Load TONESHELL Backdoor
iT4iNT SERVER The Chinese hacking group known as Mustang Panda has leveraged a previously undocumented kernel-mode rootkit driver to deliver a new va…
⚡ Weekly Recap: MongoDB Attacks, Wallet Breaches, Android Spyware, Insider Crime & More
iT4iNT SERVER Last week’s cyber news in 2025 was not about one big incident. It was about many small cracks opening at the same time. Tools people tr…
27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials
iT4iNT SERVER Cybersecurity researchers have disclosed details of what has been described as a "sustained and targeted" spear-phishing camp…
MongoDB Vulnerability CVE-2025-14847 Under Active Exploitation Worldwide
iT4iNT SERVER A recently disclosed security vulnerability in MongoDB has come under active exploitation in the wild, with over 87,000 potentially sus…
New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory
iT4iNT SERVER A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap memory. …
Trust Wallet Chrome Extension Breach Caused $7 Million Crypto Loss via Malicious Code
iT4iNT SERVER Trust Wallet is urging users to update its Google Chrome extension to the latest version following what it described as a "securit…
Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection
iT4iNT SERVER A critical security flaw has been disclosed in LangChain Core that could be exploited by an attacker to steal sensitive secrets and eve…
ThreatsDay Bulletin: Stealth Loaders, AI Chatbot Flaws AI Exploits, Docker Hack, and 15 More Stories
iT4iNT SERVER It’s getting harder to tell where normal tech ends and malicious intent begins. Attackers are no longer just breaking in — they’re blen…
Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability
iT4iNT SERVER Fortinet on Wednesday said it observed "recent abuse" of a five-year-old security flaw in FortiOS SSL VPN in the wild under c…
New MacSync macOS Stealer Uses Signed App to Bypass Apple Gatekeeper
iT4iNT SERVER Cybersecurity researchers have discovered a new variant of a macOS information stealer called MacSync that's delivered by means of …
SEC Files Charges Over $14 Million Crypto Scam Using Fake AI-Themed Investment Tips
iT4iNT SERVER The U.S. Securities and Exchange Commission (SEC) has filed charges against multiple companies for their alleged involvement in an elab…
Italy Fines Apple €98.6 Million Over ATT Rules Limiting App Store Competition
iT4iNT SERVER Apple has been fined €98.6 million ($116 million) by Italy's antitrust authority after finding that the company's App Tracking …
Two Chrome Extensions Caught Secretly Stealing Credentials from Over 170 Sites
iT4iNT SERVER Cybersecurity researchers have discovered two malicious Google Chrome extensions with the same name and published by the same developer…
U.S. DoJ Seizes Fraud Domain Behind $14.6 Million Bank Account Takeover Scheme
iT4iNT SERVER The U.S. Justice Department (DoJ) on Monday announced the seizure of a web domain and database that it said was used to further a crimi…
⚡ Weekly Recap: Firewall Exploits, AI Data Theft, Android Hacks, APT Attacks, Insider Leaks & More
iT4iNT SERVER Cyber threats last week showed how attackers no longer need big hacks to cause big damage. They’re going after the everyday tools we tr…
Android Malware Operations Merge Droppers, SMS Theft, and RAT Capabilities at Scale
iT4iNT SERVER Threat actors have been observed leveraging malicious dropper apps masquerading as legitimate applications to deliver an Android SMS st…
Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence
iT4iNT SERVER Threat hunters have discerned new activity associated with an Iranian threat actor known as Infy (aka Prince of Persia), nearly five ye…
U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware
iT4iNT SERVER The U.S. Department of Justice (DoJ) this week announced the indictment of 54 individuals in connection with a multi-million dollar ATM…
Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers
iT4iNT SERVER A suspected Russia-aligned group has been attributed to a phishing campaign that employs device code authentication workflows to steal …
Cracked Software and YouTube Videos Spread CountLoader and GachiLoader Malware
iT4iNT SERVER Cybersecurity researchers have disclosed details of a new campaign that has used cracked software distribution sites as a distribution …
WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability
iT4iNT SERVER WatchGuard has released fixes to address a critical security flaw in Fireware OS that it said has been exploited in real-world attacks.…
China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware
iT4iNT SERVER A previously undocumented China-aligned threat cluster dubbed LongNosedGoblin has been attributed to a series of cyber attacks targetin…
HPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code Execution
iT4iNT SERVER Hewlett Packard Enterprise (HPE) has resolved a maximum-severity security flaw in OneView Software that, if successfully exploited, cou…
How to Order VPN with Dedicated IP
Server Hosting So you’re looking to get a VPN with a dedicated IP? Smart move. Let me walk you through it because it’s honestly easier than you might…
ThreatsDay Bulletin: WhatsApp Hijacks, MCP Leaks, AI Recon, React2Shell Exploit and 15 More Stories
iT4iNT SERVER This week’s ThreatsDay Bulletin tracks how attackers keep reshaping old tools and finding new angles in familiar systems. Small changes…
APT28 Targets Ukrainian UKR-net Users in Long-Running Credential Phishing Campaign
iT4iNT SERVER The Russian state-sponsored threat actor known as APT28 has been attributed to what has been described as a "sustained" crede…
Fix SOC Blind Spots: See Threats to Your Industry & Country in Real Time
iT4iNT SERVER Modern security teams often feel like they’re driving through fog with failing headlights. Threats accelerate, alerts multiply, and SOC…
GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads
iT4iNT SERVER A new campaign named GhostPoster has leveraged logo files associated with 17 Mozilla Firefox browser add-ons to embed malicious JavaScr…
Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign
iT4iNT SERVER An ongoing campaign has been observed targeting Amazon Web Services (AWS) customers using compromised Identity and Access Management (I…
Amazon Exposes Years-Long GRU Cyber Campaign Targeting Energy and Cloud Infrastructure
iT4iNT SERVER Amazon's threat intelligence team has disclosed details of a "years-long" Russian state-sponsored campaign that targeted …
Fortinet FortiGate Under Active Attack Through SAML SSO Authentication Bypass
iT4iNT SERVER Threat actors have begun to exploit two newly disclosed security flaws in Fortinet FortiGate devices, less than a week after public dis…
FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE
iT4iNT SERVER Multiple security vulnerabilities have been disclosed in the open-source private branch exchange (PBX) platform FreePBX, including a cr…
Phantom Stealer Spread by ISO Phishing Emails Hitting Russian Finance Sector
iT4iNT SERVER Cybersecurity researchers have disclosed details of an active phishing campaign that's targeting a wide range of sectors in Russia …
VolkLocker Ransomware Exposed by Hard-Coded Master Key Allowing Free Decryption
iT4iNT SERVER The pro-Russian hacktivist group known as CyberVolk (aka GLORIAMIST) has resurfaced with a new ransomware-as-a-service (RaaS) offering …
CISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE Attacks
iT4iNT SERVER The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a high-severity flaw impacting Sierra Wireless AirLink…
New Advanced Phishing Kits Use AI and MFA Bypass Tactics to Steal Credentials at Scale
iT4iNT SERVER Cybersecurity researchers have documented four new phishing kits named BlackForce, GhostFrame, InboxPrime AI, and Spiderman that are ca…
Securing GenAI in the Browser: Policy, Isolation, and Data Controls That Actually Work
iT4iNT SERVER The browser has become the main interface to GenAI for most enterprises: from web-based LLMs and copilots, to GenAI‑powered extensions …
CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog
iT4iNT SERVER The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting OSGeo GeoSer…
ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories
iT4iNT SERVER This week’s cyber stories show how fast the online world can turn risky. Hackers are sneaking malware into movie downloads, browser add…
The Impact of Robotic Process Automation (RPA) on Identity and Access Management
iT4iNT SERVER As enterprises refine their strategies for handling Non-Human Identities (NHIs), Robotic Process Automation (RPA) has become a powerful…
React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors
iT4iNT SERVER React2Shell continues to witness heavy exploitation, with threat actors leveraging the maximum-severity security flaw in React Server C…
Webinar: How Attackers Exploit Cloud Misconfigurations Across AWS, AI Models, and Kubernetes
iT4iNT SERVER Cloud security is changing. Attackers are no longer just breaking down the door; they are finding unlocked windows in your configuratio…
Microsoft Issues Security Fixes for 56 Flaws, Including Active Exploit and Two Zero-Days
iT4iNT SERVER Microsoft closed out 2025 with patches for 56 security flaws in various products across the Windows platform, including one vulnerabili…
STAC6565 Targets Canada in 80% of Attacks as Gold Blade Deploys QWCrypt Ransomware
iT4iNT SERVER Canadian organizations have emerged as the focus of a targeted cyber campaign orchestrated by a threat activity cluster known as STAC65…
Experts Confirm JS#SMUGGLER Uses Compromised Sites to Deploy NetSupport RAT
iT4iNT SERVER Cybersecurity researchers are calling attention to a new campaign dubbed JS#SMUGGLER that has been observed leveraging compromised webs…
⚡ Weekly Recap: USB Malware, React2Shell, WhatsApp Worms, AI IDE Bugs & More
iT4iNT SERVER It’s been a week of chaos in code and calm in headlines. A bug that broke the internet’s favorite framework, hackers chasing AI tools, …
