Key Update: CVE-2021-26829 Added to CISA KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2021-26829 — a cross-site scripting (XSS) flaw in OpenPLC ScadaBR — to its Known Exploited […]
Month: November 2025
Legacy Python Bootstrap Scripts Pose Domain‑Takeover Risk in PyPI Packages
Researchers at ReversingLabs have uncovered a latent supply‑chain vulnerability in several Python packages that still ship legacy bootstrap.py scripts tied to the discontinued Distribute project. […]
Malicious LLMs Like WormGPT 4 and KawaiiGPT Are Accelerating Cybercrime — What Security Teams Must Know
The emergence of unrestricted large language models (LLMs) like WormGPT 4 and KawaiiGPT marks a turning point in cybercrime tooling. These models are specifically tuned […]
ASUS CVE-2025-59366 Alert: Critical Auth Bypass in AiCloud Routers — What You Need to Do Now
ASUS has issued a firmware update to patch nine vulnerabilities, including a critical authentication bypass flaw (CVE-2025-59366) affecting routers with AiCloud enabled. This flaw allows […]
RomCom + SocGholish: Fake Updates Deliver Mythic Agent Malware
A new campaign highlights the convergence of RomCom (a Russia‑aligned threat actor) and SocGholish (aka FakeUpdates), a long‑running JavaScript loader used by multiple cybercrime groups. […]
Sha1‑Hulud Second Wave — Executive Summary and Immediate Risk
What happened: A new wave of Sha1‑Hulud supply‑chain attacks trojanized hundreds of npm packages (uploaded Nov 21–23, 2025) to run malicious code during the preinstall […]
Summary of the Windows 11 24H2 XAML registration bug
Microsoft confirmed a timing bug in Windows 11 24H2 cumulative updates (since July 2025) that prevents key XAML packages from registering quickly enough after update/install. […]
WhatsApp enumeration: how researchers scraped 3.5 billion accounts and what it means for defenders
Researchers at the University of Vienna demonstrated a powerful account‑enumeration technique against WhatsApp that allowed them to check hundreds of millions of phone numbers per […]
Sneaky2FA Adds Browser‑in‑the‑Browser to Its Phishing Toolkit — Why Microsoft 365 Users Are at Heightened Risk
Sneaky2FA’s adoption of the browser‑in‑the‑browser (BitB) trick marks a meaningful escalation in phishing sophistication. The kit already automated real‑time MFA relay (AitM) and SVG‑based UI […]
WrtHug Hijacks EoL ASUS Routers at Scale — What Network Owners Need to Know
SecurityScorecard’s STRIKE team has uncovered Operation WrtHug, a large‑scale campaign that has seized tens of thousands of end‑of‑life ASUS WRT routers worldwide by chaining several […]