Tag: Attacks

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has urged federal agencies to patch the recent React2Shell vulnerability …

12 December 2025

Attacks, Emergency, Exploitation, Global, Malware
Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks

A high-severity unpatched security vulnerability in Gogs has come under active exploitation, with more than 700 compromised instances …

11 December 2025

Active, Attacks, Instances, Malware, Security Pro
Active Attacks Exploit Gladinet’s Hard-Coded Keys for Unauthorized Access and Code Execution

Huntress is warning of a new actively exploited vulnerability in Gladinet’s CentreStack and Triofox products stemming from the use of …

11 December 2025

Access Controls, Active, Attacks, Keys, Threat Intelligence
ClickFix Social Engineering Sparks Rise of CastleLoader Attacks

A new malware campaign using a Python-based delivery chain to deploy the emerging CastleLoader family has been discovered by cybersecurity …

10 December 2025

Attacks, ClickFix, IT, Rise, Social Engineering
UK NCSC Raises Alarms Over Prompt Injection Attacks

Prompt injection vulnerabilities may never be fully mitigated as a category and network defenders should instead focus on ways to reduce …

9 December 2025

Alarms, Attacks, IT, NCSC, UK
STAC6565 Targets Canada in 80% of Attacks as Gold Blade Deploys QWCrypt Ransomware

Canadian organizations have emerged as the focus of a targeted cyber campaign orchestrated by a threat activity cluster known as STAC6565. …

9 December 2025

Attacks, Blades, Canada, Gold, Identity Theft
Sneeit WordPress RCE Exploited in the Wild While ICTBroadcast Bug Fuels Frost Botnet Attacks

A critical security flaw in the Sneeit Framework plugin for WordPress is being actively exploited in the wild, per data from Wordfence. The …

8 December 2025

Attacks, Botnets, Bug, Malware, Security Pro
Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks

Over 30 security vulnerabilities have been disclosed in various artificial intelligence (AI)-powered Integrated Development Environments …

6 December 2025

Attacks, Developer Tools, Flaws, Prompt Injection, Researchers
Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails

A new agentic browser attack targeting Perplexity’s Comet browser that’s capable of turning a seemingly innocuous email into a destructive …

5 December 2025

Agentic, Attacks, Browsers, Data Wiper, Delete
JPCERT Confirms Active Command Injection Attacks on Array AG Gateways

A command injection vulnerability in Array Networks AG Series secure access gateways has been exploited in the wild since August 2025, …

5 December 2025

Active, Arrays, Attacks, Gateways, Malware
Cloudflare Blocks Aisuru Botnet Powered Largest Ever 29.7 Tbps DDoS Attack

The Internet faced an aggressive surge in cyberattacks during the third quarter of 2025, according to a comprehensive DDoS threat report …

4 December 2025

Attacks, CDN, CloudFlare, Ddos Attack, Malware
New GhostFrame Phishing Framework Hits Over One Million Attacks

A new phishing framework named GhostFrame, built around a stealthy iframe architecture, has been linked to more than one million attacks. …

4 December 2025

Attacks, Frameworks, Identity Theft, Million, New

{"loadingDistance":1200,"stickyPosts":[],"nextPageLink":"https://itts.at/archives/tag/attacks/page/2","queryId":2}

●●●