Old Fortinet VPN Bug Resurfaces as Active 2FA Bypass Threat Credited by Freepik VTA-004550 – Old Fortinet VPN Bug Resurfaces as Active 2FA Bypass Threat An ongoing campaign exploiting a long-standing vulnerability in Fortinet’s FortiOS and FortiProxy products enables attackers to bypass two-factor … Read More
VTA
ERRTraffic Scales ClickFix Attacks Through Deceptive Web Errors
ERRTraffic Scales ClickFix Attacks Through Deceptive Web Errors Credited by Freepik VTA-004549 – ERRTraffic Scales ClickFix Attacks Through Deceptive Web Errors New service dubbed ERRTraffic is accelerating and industrializing the distribution of the already prolific ClickFix malware by leveraging deceptive browser behavior. Threat actors … Read More
PowerShell Malware Distributed Through Impersonated Microsoft Activation Sites
PowerShell Malware Distributed Through Impersonated Microsoft Activation Sites Credited by Freepik VTA-004548 – PowerShell Malware Distributed Through Impersonated Microsoft Activation Sites A typosquatted domain mimicking the popular Microsoft Activation Scripts (MAS) tool has emerged as a clever trap for Windows … Read More
Active Attacks Target Weak Cryptography in Gladinet File-Access Products
Active Attacks Target Weak Cryptography in Gladinet File-Access Products Credited by Freepik VTA-004547 – Active Attacks Target Weak Cryptography in Gladinet File-Access Products Huntress has uncovered active exploitation of a critical flaw in Gladinet’s CentreStack and Triofox file-sharing platforms, where … Read More
Shanya The Silent Engine Behind Modern Stealth Attacks
Shanya The Silent Engine Behind Modern Stealth Attacks Credited by Freepik VTA-004546 – Shanya The Silent Engine Behind Modern Stealth Attacks Shanya, a sophisticated packer-as-a-service (PaaS) advertised as VX Crypt, has quickly become a go-to tool for ransomware operators seeking to evade endpoint detection … Read More
Critical React2Shell Vulnerability (CVE-2025-66478) Enables Remote Code Execution in Next.js Applications
Critical React2Shell Vulnerability (CVE-2025-66478) Enables Remote Code Execution in Next.js Applications Credited by Freepik VTA-004545 – Critical React2Shell Vulnerability (CVE-2025-66478) Enables Remote Code Execution in Next.js Applications The React2Shell vulnerability (CVE-2025-66478) exposes a critical remote code execution flaw in Next.js … Read More
Why DragonForce Ransomware Is More Dangerous Than Ever With Scattered Spider Support
Why DragonForce Ransomware Is More Dangerous Than Ever With Scattered Spider Support Credited by Freepik VTA-004544 – Why DragonForce Ransomware Is More Dangerous Than Ever With Scattered Spider Support Recent analysis by the Acronis Threat Research Unit reveals that the DragonForce ransomware … Read More
ShadyPanda’s Hidden Malware Network Infects Over 4 Million Browsers
ShadyPanda’s Hidden Malware Network Infects Over 4 Million Browsers Credited by Freepik VTA-004543 – ShadyPanda’s Hidden Malware Network Infects Over 4 Million Browsers A new investigation by Koi Security has exposed a massive, long-running espionage and monetization campaign using browser … Read More
How a Single Configuration Bug from Cloudflare Shook the Digital World
How a Single Configuration Bug from Cloudflare Shook the Digital World Credited by Freepik VTA-004542 – How a Single Configuration Bug from Cloudflare Shook the Digital World The Cloudflare outage on November 18, 2025, caused widespread internet outages, affecting millions … Read More