cyberespionage

2 articles
sort: new top best
clear filter
bug-bounty536 xss296 rce173 google145 bragging-post121 exploit121 account-takeover120 facebook117 privilege-escalation105 malware99 open-source98 microsoft97 authentication-bypass95 csrf87 cve80 access-control77 stored-xss75 web-security68 ai-agents68 writeup66 reflected-xss63 phishing62 ssrf55 input-validation55 reverse-engineering53 information-disclosure53 sql-injection51 api-security51 apple49 smart-contract49 cross-site-scripting49 defi48 privacy47 tool46 ethereum45 ai-security44 vulnerability-disclosure44 browser39 credential-theft39 web-application38 llm38 web337 burp-suite37 automation37 opinion37 remote-code-execution37 race-condition36 lfi36 supply-chain35 authentication35
0 3/10
Apple patches older iPhones and iPads against Coruna exploits
news

Apple released security patches for older iPhones and iPads to address multiple vulnerabilities (CVE-2023-41974, CVE-2024-23222, CVE-2023-43000, CVE-2023-43010) previously exploited by the Coruna exploit kit in cyberespionage and cryptocurrency theft attacks. The patches backport fixes originally released in September 2023 to devices running iOS/iPadOS 15.8.7 and 16.7.15.

ios-vulnerability ipados-vulnerability kernel-vulnerability use-after-free webkit-vulnerability type-confusion remote-code-execution privilege-escalation exploit-kit zero-day cyberespionage crypto-theft patching security-update cisa threat-actor
CVE-2023-41974 CVE-2024-23222 CVE-2023-43000 CVE-2023-43010 CVE-2026-20700 Coruna Apple Google Threat Intelligence Group GTIG CISA UNC6353 UNC6691 Sergiu Gatlan
bleepingcomputer.com · Sergiu Gatlan · 2 days ago · details
0 5/10
Stan Ghouls targeting Russia and Uzbekistan with NetSupport RAT
threat-intelligence

Kaspersky reports on Stan Ghouls (Bloody Wolf), a cybercriminal APT targeting Russia, Uzbekistan, and neighboring countries since 2023. The group uses spear-phishing emails with malicious PDF attachments containing Java-based loaders to deploy NetSupport RAT, with recent campaigns suggesting expansion into IoT-focused malware.

stan-ghouls netsupport-rat phishing malicious-pdf java-loader spear-phishing apt remote-access-trojan malware initial-access persistence russia uzbekistan financial-sector manufacturing it-sector infrastructure-analysis ioc cyberespionage
Stan Ghouls Bloody Wolf NetSupport RAT STRRAT Strigoi Master Kaspersky Securelist
securelist.com · Kaspersky · 1 month ago · details