Skip to content

Red-Team News

The latest cybersecurity news, threat intelligence, and C2 development news enhanced by AI

All News
Red-Team
Blue-Team
Threat Intelligence
- CVE News
- Data Breaches
Cyber Laws & Regulations
Other

Search for:

Join The Newsletter

News

CVE-2025-1040: AutoGPT Vulnerability Exposes Systems to Remote Code Execution via SSTI

Exploitation

CVE-2025-1040: AutoGPT Vulnerability Exposes Systems to Remote Code Execution via SSTI

TL;DR CVE ID: CVE-2025-1040 Severity: High (CVSS 8.8) Affected Versions: AutoGPT 0.3.4 and earlier Vulnerability Type: Server-Side...

Kaspersky Links Head Mare to Twelve, Targeting Russian Entities via Shared C2 Servers

APT-News

Kaspersky Links Head Mare to Twelve, Targeting Russian Entities via Shared C2 Servers

In a significant cybersecurity development, Kaspersky has uncovered evidence suggesting that two known threat activity clusters, Head...

Cobalt Strike 4.11: Shhhhhh, Beacon is Sleeping….

Fig. 1 – A screenshot showing the results of Get-InjectedThreadEx scanning a process into which a 4.11 Beacon has just been injected.

C2-Updates

Cobalt Strike 4.11: Shhhhhh, Beacon is Sleeping….

DNS Over HTTPS Beacon The new DoH implementation blends DNS C2 with legitimate web traffic: Default configuration...

CVE-2025-29927 – Next.js Authorization Bypass in Middleware

Exploitation

CVE-2025-29927 – Next.js Authorization Bypass in Middleware

Vulnerability: A critical authorization bypass flaw (CVE-2025-29927) has been identified in Next.js, a popular React framework. Severity:...

Posts pagination

Previous 1 … 57 58 59 60

You may have missed

Google Issues Workarounds for ChromeOS Authentication Failures in Enterprise Environments

Blue-Team

Google Issues Workarounds for ChromeOS Authentication Failures in Enterprise Environments

August 28, 2025

Microsoft Word’s Cloud-Centric Default: Security Implications and Enterprise Management Challenges

News

Microsoft Word’s Cloud-Centric Default: Security Implications and Enterprise Management Challenges

August 28, 2025

Passwordstate Authentication Bypass: A History of High-Severity Flaws and Hardening

CVE News

Passwordstate Authentication Bypass: A History of High-Severity Flaws and Hardening

August 28, 2025

Global Law Enforcement Intensifies Crackdown on Cybercrime Enablers with VerifTools Takedown

Threat Intelligence

Global Law Enforcement Intensifies Crackdown on Cybercrime Enablers with VerifTools Takedown

August 28, 2025

Copyright © All rights reserved.