Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
TMCnet

Hardening Trading Infrastructure: Using Immutable Ledgers to Secure Financial Data on Linux Platforms

Most exchange backends still run on Linux - matching engines, market-data services, FIX gateways, and high-throughput trading ...
Microsoft

Cookie-controlled PHP webshells: A stealthy tradecraft in Linux hosting environments

Threat actors are increasingly abusing HTTP cookies as a control channel for PHP-based webshells on Linux servers. Instead of exposing command execution through URL parameters or request bodies, these ...
Dark Reading

Attackers Hide Infostealer in Copyright Infringement Notices

Attackers are using copyright-infringement notices to target multiple industry sectors in a fileless phishing campaign that delivers data-stealing malware. The attack — aimed at organizations in ...
CSOonline

ClickFix techniques evolve in new infostealer campaigns

Recent social engineering schemes involving WordPress and Microsoft’s Windows Terminal show that this relatively basic tactic is a growing threat. Cybercriminals are combining compromised websites ...
MarketWatch

ThreatDown Uncovers First Cyber Attack Abusing Deno JavaScript Runtime for Fileless Malware Delivery

The MarketWatch News Department was not involved in the creation of this content. -- ThreatDown's EDR team discovered a sophisticated, multi-stage attack chain during an active investigation; the ...
Morningstar

ThreatDown Uncovers First Cyber Attack Abusing Deno JavaScript Runtime for Fileless Malware Delivery

ThreatDown’s EDR team discovered a sophisticated, multi-stage attack chain during an active investigation; the first documented case of attackers abusing the Deno runtime as a malware execution ...
AOL

Fake ad blocker breaks PCs in new malware extension scam

Fake browser extensions are nothing new, but this one takes things a step further by deliberately breaking your computer to scare you into infecting it. Security researchers have uncovered a malicious ...
SiliconANGLE

Securonix warns of Dead#Vax malware campaign abusing Windows fileless execution

A new report out today from cybersecurity company Securonix Inc. is warning of a highly sophisticated, multistage malware campaign where attackers are abusing trusted Windows features and fileless ...
IEEE

Tron: Fuzzing Linux Network Stack via Protocol-System Call Payload Synthesis

Abstract: The Linux kernel network stack is a critical component of modern operating systems, widely deployed across platforms and often exposed to untrusted inputs. Its complex and stateful nature ...
The Hacker News

Malicious PyPI Package Impersonates SymPy, Deploys XMRig Miner on Linux Hosts

A new malicious package discovered in the Python Package Index (PyPI) has been found to impersonate a popular library for symbolic mathematics to deploy malicious payloads, including a cryptocurrency ...
SecurityWeek

APT-Grade PDFSider Malware Used by Ransomware Groups

Providing cyberespionage and remote code execution capabilities, the malware is executed via DLL sideloading. A newly identified malware family with advanced capabilities is being used in targeted ...