MuddyWater Targets 100+ Gov Entities in MEA With Phoenix Backdoor
The Iranian threat group is using a compromised mailbox accessed through NordVPN to send phishing...
Read More
Author: Elizabeth Montalbano, Contributing Writer
webctrl.cgi/Blue Angel Software Suite Exploit Attempts. Maybe CVE-2025-34033 Variant?, (Wed, Oct 22nd)
Starting yesterday, some of our honeypots received POST requests to “/cgi-bin/webctrl.cgi”, attempting to exploit an OS command injection vulnerability: POST /cgi-bin/webctrl.cgi Host: [honeypot ip]:80 User-Agent:...
Read More
Russia Pivots, Cracks Down on Low-Level Hackers
Thanks to improving cybersecurity and law enforcement action from the West, Russia’s...
Read MoreFake Nethereum NuGet Package Used Homoglyph Trick to Steal Crypto Wallet Keys
Cybersecurity researchers have uncovered a new supply chain attack targeting the NuGet package manager with malicious typosquats of Nethereum, a popular Ethereum .NET integration platform, to steal victims’ cryptocurrency...
Read MoreChinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft’s July Patch
Threat actors with ties to China exploited the ToolShell security vulnerability in Microsoft SharePoint to breach a telecommunications company in the Middle East after it was publicly disclosed and patched in July 2025. Also...
Read More