Internet Security

Microsoft warns of critical flaw in Canon printer drivers

April 1, 2025 add comment
Microsoft’s offensive security team discovered a critical code execution vulnerability impacting Canon printer drivers.  Researchers at Microsoft’s Offensive Research and Security Engineering (MORSE) team have discovered a critical code... Read more »

CrushFTP CVE-2025-2825 flaw actively exploited in the wild

April 1, 2025 add comment
Attackers exploit CrushFTP CVE-2025-2825 flaw, enabling unauthenticated access to unpatched devices using public proof-of-concept code. Threat actors are exploiting a critical authentication bypass vulnerability, tracked as CVE-2025-2825, in the... Read more »

France’s antitrust authority fines Apple €150M for issues related to its App Tracking Transparency

April 1, 2025 add comment
France fines Apple €150M for abusing its dominance in ATT consent practices on iOS and iPadOS from 2021 to 2023. France’s Autorité de la concurrence fined Apple €150M for... Read more »

Hiding WordPress malware in the mu-plugins directory to avoid detection

April 1, 2025 add comment
Sucuri researchers spotted threat actors deploying WordPress malware in the mu-plugins directory to evade security checks. In February, Sucuri warned of threat actors exploiting WordPress mu-plugins, which auto-load without... Read more »

U.S. CISA adds Cisco Smart Licensing Utility flaw to its Known Exploited Vulnerabilities catalog

March 31, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Cisco Smart Licensing Utility flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Cisco... Read more »

Russia-linked Gamaredon targets Ukraine with Remcos RAT

March 31, 2025 add comment
Russia-linked Gamaredon targets Ukraine with a phishing campaign using troop-related lures to deploy the Remcos RAT via PowerShell downloader. Talos researchers warn that Russia-linked APT group Gamaredon (a.k.a. Armageddon, Primitive... Read more »

CoffeeLoader uses a GPU-based packer to evade detection

March 31, 2025 add comment
CoffeeLoader is a sophisticated malware that uses numerous techniques to bypass security solutions, Zscaler ThreatLabz warns. Zscaler ThreatLabz discovered CoffeeLoader, a malware family active since September 2024, that uses... Read more »

Morphing Meerkat phishing kits exploit DNS MX records

March 31, 2025 add comment
Morphing Meerkat phishing kits exploit DNS MX records to deliver spoofed login pages, targeting over 100 brands. Infoblox researchers discovered a new phishing-as-a-service (PhaaS) platform that generated multiple phishing... Read more »

CISA warns of RESURGE malware exploiting Ivanti flaw

March 30, 2025 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns of RESURGE malware, targeting a vulnerability in Ivanti Connect Secure (ICS) appliances. The U.S. Cybersecurity and Infrastructure Security Agency (CISA)... Read more »

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 39

March 30, 2025 add comment
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Microsoft Trusted Signing service abused to code-sign malware Shedding light... Read more »
Subscribe to our Newsletter