Credential Theft

Dell Unity Open Redirect Vulnerability (CVE-2025-24381): Risks and Mitigation

CVE News

Dell Unity Open Redirect Vulnerability (CVE-2025-24381): Risks and Mitigation

A high-severity open redirect vulnerability (CVE-2025-24381) has been identified in Dell Unity storage systems running versions 5.4...

10GB of Stolen Login Credentials Reportedly Leaked by Threat Actor

Data Breach

10GB of Stolen Login Credentials Reportedly Leaked by Threat Actor

A threat actor has allegedly obtained and leaked approximately 10GB of stolen login credentials, posing a significant...

Arcane Stealer Malware Targets Gamers via YouTube and Discord, Steals VPN Credentials

Malware Analysis

Arcane Stealer Malware Targets Gamers via YouTube and Discord, Steals VPN Credentials

A sophisticated malware campaign dubbed “Arcane Stealer” is actively targeting gamers and VPN users through compromised YouTube...

XE Group’s Cybercrime Evolution: From Credit Card Skimming to Zero-Day Exploitation

APT-News

XE Group’s Cybercrime Evolution: From Credit Card Skimming to Zero-Day Exploitation

The XE Group, a cybercrime syndicate with suspected Vietnamese origins, has dramatically evolved its operations from traditional...

Credential Dumping via Active Directory User Comments: Risks and Mitigations

News

Credential Dumping via Active Directory User Comments: Risks and Mitigations

Active Directory (AD) credential dumping remains a significant threat, with attackers increasingly exploiting overlooked attributes like user...

RedLine Stealer Malware: Analyzing the Persistent Data-Theft Threat Targeting Credentials

Malware Analysis

RedLine Stealer Malware: Analyzing the Persistent Data-Theft Threat Targeting Credentials

TrojanSpy.MSIL.REDLINESTEALER.YXBDN represents a sophisticated Windows-based information stealer with demonstrated capabilities in credential harvesting across multiple applications. First...

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

News

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

Multi-factor authentication (MFA) is a foundational security control, but attackers are increasingly bypassing it using MFA Push...

New Phishing Tactic Exploits Firebase to Steal Credentials

Threat Intelligence

New Phishing Tactic Exploits Firebase to Steal Credentials

Check Point Research has uncovered a sophisticated phishing campaign leveraging Google Firebase to host fraudulent pages mimicking...

CVE-2025-2609 – MagnusSolution MagnusBilling Cross-Site Scripting Vulnerability

Bug Bounties & Responsible Disclosure
Cyber Laws & Regulations
Exploitation
Malware Analysis
Red-Team
SIEM & Detection Engineering

CVE-2025-2609 – MagnusSolution MagnusBilling Cross-Site Scripting Vulnerability

A critical vulnerability, CVE-2025-2609, has been identified in MagnusSolution’s MagnusBilling software, a widely used billing and call...

Credential Theft

Dell Unity Open Redirect Vulnerability (CVE-2025-24381): Risks and Mitigation

10GB of Stolen Login Credentials Reportedly Leaked by Threat Actor

Arcane Stealer Malware Targets Gamers via YouTube and Discord, Steals VPN Credentials

XE Group’s Cybercrime Evolution: From Credit Card Skimming to Zero-Day Exploitation

Credential Dumping via Active Directory User Comments: Risks and Mitigations

RedLine Stealer Malware: Analyzing the Persistent Data-Theft Threat Targeting Credentials

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

New Phishing Tactic Exploits Firebase to Steal Credentials

CVE-2025-2609 – MagnusSolution MagnusBilling Cross-Site Scripting Vulnerability

You may have missed

Trump Administration Considers TikTok Deal Allowing Chinese Algorithm Ownership

How Intezer’s AI SOC Balances Automation with Human Expertise

How Security Platformization Improves Threat Response and Operational Efficiency

World Backup Day: Essential Strategies for Enterprise Data Protection