Microsoft IIS Failure Issues Linked to December 2025 Update
Microsoft has confirmed that its December 2025 Windows security update (KB5071546, OS Build 19045.6691) is causing Message Queuing (MSMQ) failures, leading to widespread IIS site […]
Month: December 2025
AWS Crypto Mining Campaign Using Compromised IAM Credentials
A large‑scale cryptocurrency mining campaign has been uncovered targeting Amazon Web Services (AWS) customers. Attackers are abusing compromised IAM credentials to spin up massive compute […]
GhostPoster Campaign: Malicious JavaScript Hidden in Firefox Add‑On Logos
Researchers have uncovered a stealthy malware campaign called GhostPoster, which embeds JavaScript code inside the PNG logos of Firefox extensions. With over 50,000 downloads, these […]
Windows Remote Access Connection Manager Vulnerability (RasMan)
A critical security flaw has been identified in the Windows Remote Access Connection Manager (RasMan) service that could allow local attackers to execute arbitrary code […]
VolkLocker Ransomware Exposed by Hard‑Coded Master Key
The pro‑Russian hacktivist group CyberVolk (aka GLORIAMIST) has resurfaced with a new ransomware‑as‑a‑service (RaaS) offering called VolkLocker. Despite its aggressive design, researchers found a fatal […]
PayPal Subscription Abuse Scam: Fake Purchase Emails
A new scam is exploiting PayPal’s Subscriptions billing feature to send legitimate PayPal emails that contain fake purchase notifications, tricking recipients into believing they bought […]
GeminiJack: Zero‑Click Vulnerability in Google Gemini Enterprise
A newly disclosed zero‑click vulnerability dubbed GeminiJack exposed Gmail, Calendar, and Docs data in Google Gemini Enterprise (formerly Vertex AI Search). What Happened How GeminiJack […]
Four Threat Clusters Leveraging CastleLoader Under GrayBravo’s MaaS Model
CastleLoader, a malware loader operated by the threat actor GrayBravo (formerly TAG‑150), is now being used by four distinct threat clusters, confirming its role as […]
Critical Fortinet Vulnerability: FortiCloud SSO Authentication Bypass
Fortinet has disclosed a critical vulnerability (CWE‑347: Improper Verification of Cryptographic Signature) affecting FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager. What’s the Issue Mitigation & Workarounds Affected […]
Windows PowerShell Adds Security Warnings for Invoke‑WebRequest
Microsoft has introduced a new security prompt in Windows PowerShell 5.1 to mitigate a high‑severity remote code execution vulnerability (CVE‑2025‑54100). This change is aimed at […]