Patch Now Dell UnityVSA Flaw Allows Command Execution Without Login

Cybersecurity researchers at WatchTowr have published their analysis revealing a vulnerability in Dell UnityVSA, tracked as CVE-2025-36604. The flaw allows an attacker with no authentication to iss...

Oct 6, 2025 VULNS

New Report Links Research Firms BIETA and CIII to China's MSS Cyber Operations

BIETA and its subsidiary, Beijing Sanxin Times Technology Co., Ltd. (CIII), research, develop, import, and sell technologies that almost certainly support intelligence, counterintelligence, militar...

Oct 6, 2025 APT

Microsoft Critical GoAnywhere bug exploited in ransomware attacks

Tracked as CVE-2025-10035, this security flaw impacts Fortra’s web-based secure transfer GoAnywhere MFT tool, caused by a deserialization of untrusted data weakness in the License Servlet. This vul...

Oct 6, 2025 SECURITY

Booz Allen warns China’s AI-driven, supply chain cyber strategy fuels PRC dominance

A new report from Booz Allen Hamilton identified that the People’s Republic of China (PRC) has developed a sophisticated and persistent cyber acceleration strategy that enables it to conduct global...

Oct 6, 2025 APT

New WireTap Attack Breaks Server SGX to Exfiltrate Sensitive Data

A newly disclosed vulnerability, named the WireTap attack, allows attackers with physical access to break the security of Intel’s Software Guard eXtensions (SGX) on modern server processors and ste...

Oct 5, 2025 CYBER SECURITY

Hackers exploited Zimbra flaw as zero-day using iCalendar files

Threat actors exploited CVE-2025-27915, a cross-site scripting (XSS) vulnerability in ZCS 9.0, 10.0, and 10.1, to deliver a JavaScript payload onto target systems. The vulnerability stems from insu...

Oct 5, 2025 APT

Ghost in the Cloud Weaponizing AWS X-Ray for Command & Control

Attackers can weaponize AWS X-Ray as a covert bidirectional C2 channel, abusing legitimate cloud tracing infrastructure for C2.\n\nAWS X-Ray was designed to help developers to understand applicatio...

Oct 5, 2025 SECURITY

Discord Data Breach Hackers Access IDs, Billing Details and Support Chats

Discord issued an official update on October 3, 2025, explaining that an attacker successfully compromised the systems of a third-party customer service provider (apparently Zendesk), gaining unaut...

Oct 4, 2025 DATA BREACH

CometJacking One Click Can Turn Perplexity's Comet AI Browser Into a Data Thief

Cybersecurity researchers have disclosed details of a new attack called CometJacking targeting Perplexity’s agentic AI browser Comet by embedding malicious prompts within a seemingly innocuous link...

Oct 4, 2025 CYBERSECURITY

2025-10-04 Daily Vulns

NEW: CVE vendor-product description metric Referenceurl title GithubURL CVE-2021-42193 n/a - n/a nopCom...

Oct 4, 2025 VULNERABILITIES

Oracle says hackers are trying to extort its customers

Oracle said on Thursday that customers of its E-Business Suite of products “have received extortion emails,” confirming a warning first issued on Wednesday by Alphabet’s Google. In a blog post, the...

Oct 3, 2025 ATTACK

Red Hat confirms security incident after hackers claim GitHub breach

An extortion group calling itself the Crimson Collective claims to have breached Red Hat’s private GitHub repositories, stealing nearly 570GB of compressed data across 28,000 internal projects. Thi...

Oct 2, 2025 SECURITY

Phishing Dominates EU-Wide Intrusions, says ENISA

Phishing and vulnerability exploitation accounted for the vast majority of initial access in cyber-attacks against EU organizations over the past year, according to ENISA. Over the period, phishing...

Oct 2, 2025 RESEARCH

Exposing CharmingKitten's malicious activity for IRGC-IO division Counterintelligence division

Today, we begin exposing the Iranian APT affiliated with the Counterintelligence Division (Unit 1500) of the IRGC-IO, known as Charming Kitten. Heading this operation is Abbas Rahrovi (aka Abbas H...

Oct 2, 2025 APT

Massive network of 30,000 websites filters victims before delivering scams or malware

Security researchers at Infoblox have uncovered a massive network of 30,000 unique website addresses across 584 top-level domains, such as .com. These websites contain no malware or scams themselve...

Oct 1, 2025 SECURITY

DPRK IT Workers Inside North Korea’s Crypto Laundering Network

Recent enforcement actions include OFAC sanctions in August targeting a Russian national who facilitated payments to DPRK-based Chinyong Information Technology Cooperation Company (Chinyong), also ...

Oct 1, 2025 APT

Broadcom Fails to Disclose Zero-Day Exploitation of VMware Vulnerability

A newly patched high-severity VMware vulnerability has been exploited as a zero-day since October 2024 for code execution with elevated privileges, NVISO Labs reports. According to NVISO, which was...

Oct 1, 2025 VULNS

2025-10-01 Daily Vulns

NEW: CVE vendor-product description metric Referenceurl title GithubURL CVE-2025-10773 B-Link - BL-AC2100 ...

Oct 1, 2025 VULNERABILITIES

VMware virtual machines under attack hackers may have exploited zero-day for months

Broadcom has warned about severe zero-day vulnerabilities affecting VMware software, which is widely used to power virtual machines. China-linked hackers may have been exploiting the flaws for mont...

Sep 30, 2025 SECURITY

Phantom Taurus A New Chinese Nexus APT and the Discovery of the NET-STAR Malware Suite

Phantom Taurus is a previously undocumented nation-state actor whose espionage operations align with People’s Republic of China (PRC) state interests. Over the past two and a half years, Unit 42 re...

Sep 30, 2025 APT