VulnHub

AI-Powered Cybersecurity Intelligence

Last Update Check:

Latest Intelligence

The Hacker News
Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

The Golden Chickens threat group has introduced two new malware variants, TerraStealerV2 and TerraLogger, enhancing their capabilities to steal sensitive information such as browser credentials and cryptocurrency wallet data. This development highlights the ongoing evolution of cyber threats and the need for robust security measures.


Impact: ["Browser credentials", "Cryptocurrency wallet data", "Browser extensions"]

In the Wild: Unknown

Age: Recently disclosed

Remediation: None available

Malware

Published:

The Hacker News
Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Researchers have identified three malicious Go modules that contain obfuscated code capable of delivering payloads that can irreversibly wipe a Linux system's primary disk, making it unbootable. This advanced supply chain attack poses a significant threat to Linux users and highlights the risks associated with using seemingly legitimate software packages.


Impact: ["Linux systems"]

In the Wild: Yes

Age: Recently disclosed

Remediation: None available

Linux Malware

Published:

The Hacker News
Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

An Iranian state-sponsored threat group conducted a prolonged cyber intrusion targeting critical national infrastructure in the Middle East, lasting from May 2023 to February 2025. This operation involved extensive espionage and network prepositioning, highlighting significant vulnerabilities in the region's cybersecurity defenses.


Impact: Not specified

In the Wild: Yes

Age: Discovered last month

Remediation: None available

Malware

Published:

The Hacker News
U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

The U.S. Department of Justice has charged Rami Khaled Ahmed, a 36-year-old Yemeni national, for deploying the Black Kingdom ransomware, which targeted approximately 1,500 systems globally, including critical sectors like businesses, schools, and hospitals in the U.S. This case highlights the ongoing threat of ransomware attacks and the international efforts to combat cybercrime.


Impact: Not specified

In the Wild: Yes

Age: Recently disclosed

Remediation: None available

Ransomware

Published:

darkreading
UK Retailers Reeling From Likely Ransomware Attacks

Recent cyberattacks have targeted multiple major British retailers, with a ransomware gang claiming responsibility for the incidents. This situation highlights the increasing threat of ransomware attacks on the retail sector, which can disrupt operations and compromise sensitive data.


Impact: Not specified

In the Wild: Yes

Age: Recently disclosed

Remediation: None available

Ransomware

Published:

darkreading
What NYDFS Rules Mean for Businesses (in and outside of NY)

Starting this month, finance companies in New York are required to implement enhanced protections against unauthorized access to their IT systems. This regulation underscores the importance of cybersecurity measures in the financial sector, particularly in high-risk environments like New York.


Impact: Not specified

In the Wild: Unknown

Age: Recently disclosed

Remediation: Implement protections against unauthorized access

Published:

darkreading
Attackers Ramp Up Efforts Targeting Developer Secrets

Threat actors are increasing their efforts to target developer secrets, necessitating software teams to adopt stringent security best practices to prevent leaks of sensitive information. The rise in scanning for configuration and repository files highlights the growing importance of safeguarding developer environments.


Impact: Not specified

In the Wild: Unknown

Age: Unknown

Remediation: Follow security best practices to eliminate leaks of secrets.

Published:

darkreading
Despite Arrests, Scattered Spider Continues High-Profile Hacking

Despite the arrests of several alleged members of the Scattered Spider hacking group, the organization continues to engage in high-profile cyberattacks, highlighting the persistent threat they pose. This ongoing activity underscores the challenges law enforcement faces in combating sophisticated cybercriminal networks.


Impact: Not specified

In the Wild: Yes

Age: Unknown

Remediation: None available

Published:

WeLiveSecurity
RSAC 2025 wrap-up – Week in security with Tony Anscombe

The RSAC 2025 event highlighted crucial themes in cybersecurity, including the importance of collaborative defense, identity security, and the role of AI in enhancing security measures. These discussions emphasize the ongoing evolution of security practices and the need for organizations to adapt to emerging threats.


Impact: Not specified

In the Wild: Unknown

Age: Unknown

Remediation: None available

Published:

darkreading
Cut CISA and Everyone Pays for It

The article emphasizes that cutting funding or support for CISA (Cybersecurity and Infrastructure Security Agency) will not only eliminate a crucial partner in cybersecurity but also lead to a loss of momentum in combating threats. This decline in resources could result in significant vulnerabilities and increased risks for various sectors.


Impact: Not specified

In the Wild: Unknown

Age: Unknown

Remediation: None available

Published:

SecurityWeek
Raytheon to Pay $8.4 Million in Settlement Over Cybersecurity Failures

Raytheon, along with Nightwing, has agreed to pay $8.4 million to settle allegations under the False Claims Act related to cybersecurity failures. This settlement highlights the government's focus on ensuring defense contractors adhere to cybersecurity standards.


Impact: Not specified

In the Wild: Unknown

Age: Unknown

Remediation: None available

Published:

The Hacker News
TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

TikTok has been fined €530 million by Ireland's Data Protection Commission for violating GDPR regulations by transferring the data of European users to China. This significant penalty underscores the ongoing scrutiny of data privacy practices for companies operating in the European market.


Impact: ["TikTok"]

In the Wild: No

Age: Recently disclosed

Remediation: None available

Published:

SecurityWeek
In Other News: NullPoint Source Code Leak, $17,500 for iPhone Flaw, BreachForums Down

The article highlights significant recent cybersecurity events, including the leak of the NullPoint Stealer source code, a researcher receiving $17,500 from Apple for identifying an iPhone vulnerability, and the shutdown of BreachForums following police action against a zero-day exploitation. These incidents underscore ongoing security challenges and the importance of vulnerability disclosure in the tech community.


Impact: ["NullPoint Stealer", "iPhone"]

In the Wild: Yes

Age: Recently disclosed

Remediation: Apply patches, Vendor advisory pending

Zero-day Apple Vulnerability

Published:

All CISA Advisories
CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, highlighting their active exploitation. These vulnerabilities pose significant risks to federal networks and underscore the importance of timely remediation to protect against cyber threats.


Impact: ["Commvault Command Center", "Yiiframework"]

In the Wild: Yes

Age: Recently disclosed

Remediation: Remediate identified vulnerabilities by the due date as per BOD 22-01.

CVE Vulnerability

Published:

SecurityWeek
UK Retailers Co-op, Harrods and M&S Struggle With Cyberattacks

Major UK retailers Co-op, Harrods, and M&S are facing challenges in restoring services due to recent cyberattacks. This situation highlights the increasing vulnerability of retail businesses to cyber threats and the significant impact on their operations.


Impact: Not specified

In the Wild: Unknown

Age: Unknown

Remediation: None available

Published: