IndonesianFoods Campaign Pollutes NPM Ecosystem With Automated Malware Publishing Credited by Freepik VTA-004541 – IndonesianFoods Campaign Pollutes NPM Ecosystem With Automated Malware Publishing A newly uncovered campaign known as the IndonesianFoods NPM Worm has emerged as one of the largest ecosystem-pollution attacks … Read More
VTA
Version 669 of DanaBot Blends Public IPs, Onion C2s and Crypto Payouts
Version 669 of DanaBot Blends Public IPs, Onion C2s and Crypto Payouts Credited by Freepik VTA-004540 – Version 669 of DanaBot Blends Public IPs, Onion C2s and Crypto Payouts The malware known as DANABOT has made a surprising comeback in version … Read More
WhatsApp-Based Malware Spreads via Compromised Accounts in Brazil
WhatsApp-Based Malware Spreads via Compromised Accounts in Brazil Credited by Freepik VTA-004539 – WhatsApp-Based Malware Spreads via Compromised Accounts in Brazil A new malware campaign called Water Saci, with its main variant known as SORVEPOTEL, has been discovered spreading through WhatsApp Web. The … Read More
High-Risk Cisco Vulnerability Allows Unauthorized Remote Code Execution on Routers and Firewalls
High-Risk Cisco Vulnerability Allows Unauthorized Remote Code Execution on Routers and Firewalls Credited by Freepik VTA-004538 – High-Risk Cisco Vulnerability Allows Unauthorized Remote Code Execution on Routers and Firewalls A critical vulnerability in the VPN web server of Cisco Secure … Read More
Salat Stealer Extracts Browser Credentials Through Advanced Command and Control Systems
Salat Stealer Extracts Browser Credentials Through Advanced Command and Control Systems Credited by Freepik VTA-004537 – Salat Stealer Extracts Browser Credentials Through Advanced Command and Control Systems A recent investigation by CYFIRMA has exposed Salat Stealer, also known as WEB_RAT, … Read More
Cybercriminals exploit Salesforce Application in High-Profile Data Breach
Cybercriminals exploit Salesforce Application in High-Profile Data Breach Credited by Freepik VTA-004536 – Cybercriminals exploit Salesforce Application in High-Profile Data Breach Cybercriminal group ShinyHunters, previously known for their ties to the BreachForums website and their attacks on AWS infrastructure, resurfaced … Read More
WhatsApp Desktop for Windows Allows Arbitrary Code Execution Via Malicious PYZ Files
WhatsApp Desktop for Windows Allows Arbitrary Code Execution Via Malicious PYZ Files Credited by Freepik VTA-004535 – WhatsApp Desktop for Windows Allows Arbitrary Code Execution Via Malicious PYZ Files Attackers are exploiting WhatsApp Desktop’s file transfer feature on Windows systems … Read More
Palo Alto GlobalProtect Certificate Validation Flaw Enables Privilege Escalation
Palo Alto GlobalProtect Certificate Validation Flaw Enables Privilege Escalation Credited by Freepik VTA-004534 – Palo Alto GlobalProtect Certificate Validation Flaw Enables Privilege Escalation CVE-2025-2183 exposes a critical certificate validation flaw in Palo Alto GlobalProtect VPN clients (Windows/Linux) that allows adjacent … Read More
Microsoft Warns of Critical IIS Web Deploy Flaw Enabling Remote Code Execution
Microsoft Warns of Critical IIS Web Deploy Flaw Enabling Remote Code Execution Credited by Freepik VTA-004533 – Microsoft Warns of Critical IIS Web Deploy Flaw Enabling Remote Code Execution On August 12, 2025, Microsoft disclosed CVE-2025-53772, a critical vulnerability in … Read More