Vulnerabilities

The activity has been observed between 2021 and 2025 and has been attributed “with high confidence” to Russia’s GRU.  ​ Read More  ​ 

Phantom Stealer is capable of harvesting sensitive data from cryptocurrency wallets, browsers, and desktop apps.  ​ Read More  ​ 

GTIG also observed multiple incidents, in which threat actors exploited CVE-2025-55182 to deploy XMRig.  ​ Read More  ​ 

VolkLocker’s encryptor relies on a hardcoded master key embedded directly in the malware binary.  ​ Read More  ​ 

One of the flaws is the same issue Google addressed last week in its Chrome browser.  ​ Read More  ​ 

In brief: Hackers are increasingly exploit the React2Shell flaw, Google, Microsoft and others patch zero-days in their products, and more.  ​ Read More  ​ 

Google withheld technical details, including the CVE identifier, saying coordination is still underway.  ​ Read More  ​ 

Victoria Dubranova, aka “Vika,” “Tory,” and “SovaSonya,” was extradited to the United States earlier this year.  ​ Read More  ​ 

The implant comes with sophisticated mix of features, including blockchain-based C2, multi-layered persistence, and a full Node.js runtime for evasion.  ​ Read More  ​ 

Organizations are recommended to apply fixes as soon as possible.  ​ Read More  ​ 

Microsoft has not disclosed details about how the flaw was used in the wild.  ​ Read More  ​ 

The RAT grants attackers extensive access to infected systems.  ​ Read More  ​ 

Shanya provides threat actors with a way to wrap their malware in highly customized, obfuscated code that bypasses most security tools.  ​ Read More  ​ 

The extensions called “Bitcoin Black” and “Codo AI” were disguised as a color theme and AI assistant.  ​ Read More  ​ 

Because the agent interprets the message as legitimate workload, it may execute the destructive steps without prompting the user for approval.  ​ Read More  ​