Hundreds of fake Reddit sites push Lumma Stealer malware
https://www.bleepingcomputer.com/news/security/hundreds-of-fake-reddit-sites-push-lumma-stealer-malware/
GitHub - dhmosfunk/7-Zip-CVE-2025-0411-POC: This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass.
https://github.com/dhmosfunk/7-Zip-CVE-2025-0411-POC
Custom Backdoor Exploiting Magic Packet Vulnerability in Juniper Routers
https://thehackernews.com/2025/01/custom-backdoor-exploiting-magic-packet.html
Unique 0-click deanonymization attack targeting Signal, Discord and hundreds of platform · GitHub
https://gist.github.com/hackermondev/45a3cdfa52246f1d1201c1e8cdef6117
Stealthy 'Magic Packet' malware targets Juniper VPN gateways
https://www.bleepingcomputer.com/news/security/stealthy-magic-packet-malware-targets-juniper-vpn-gateways/
Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass and Firmware Exploits
https://thehackernews.com/2025/01/palo-alto-firewalls-found-vulnerable-to.html
Tesla EV charger hacked twice on second day of Pwn2Own Tokyo
https://www.bleepingcomputer.com/news/security/tesla-ev-charger-hacked-twice-on-second-day-of-pwn2own-tokyo/
Hacking Subaru: Tracking and Controlling Cars via the STARLINK Admin Panel
https://samcurry.net/hacking-subaru
SonicWall warns of SMA1000 RCE flaw exploited in zero-day attacks
https://www.bleepingcomputer.com/news/security/sonicwall-warns-of-sma1000-rce-flaw-exploited-in-zero-day-attacks/
FortiGate Dump Domains - Grouped by TLD and Sorted Alphabetically · GitHub
https://gist.github.com/Neo23x0/e2cb09c3a193218c28424fe768605103
FBI: North Korean IT workers steal source code to extort employers
https://www.bleepingcomputer.com/news/security/fbi-north-korean-it-workers-steal-source-code-to-extort-employers/
CISA: Hackers still exploiting older Ivanti bugs to breach networks
https://www.bleepingcomputer.com/news/security/cisa-hackers-still-exploiting-older-ivanti-bugs-to-breach-networks/
https://raw.githubusercontent.com/GossiTheDog/Monitoring/refs/heads/main/Fortigate-Config-Dump-emails.txt
https://raw.githubusercontent.com/GossiTheDog/Monitoring/refs/heads/main/Fortigate-Config-Dump-emails.txt
Oh my .. ! - Suspicious network traffic detected including Ransomware | dfir.ch
https://dfir.ch/posts/suspicious_network_traffic_ransomware/
GitHub - ynwarcs/CVE-2025-21298: Proof of concept & details for CVE-2025-21298
https://github.com/ynwarcs/CVE-2025-21298
Cisco Fixes Critical Privilege Escalation Flaw in Meeting Management (CVSS 9.9)
https://thehackernews.com/2025/01/cisco-fixes-critical-privilege.html
Critical zero-days impact premium WordPress real estate plugins
https://www.bleepingcomputer.com/news/security/critical-zero-days-impact-premium-wordpress-real-estate-plugins/
QakBot-Linked BC Malware Adds Enhanced Remote Access and Data Gathering Features
https://thehackernews.com/2025/01/qakbot-linked-bc-malware-adds-enhanced.html
QNAP fixes six Rsync vulnerabilities in NAS backup, recovery app
https://www.bleepingcomputer.com/news/security/qnap-fixes-six-rsync-vulnerabilities-in-hbs-nas-backup-recovery-app/
SonicWall Urges Immediate Patch for Critical CVE-2025-23006 Flaw Amid Likely Exploitation
https://thehackernews.com/2025/01/sonicwall-urges-immediate-patch-for.html
Experts Find Shared Codebase Linking Morpheus and HellCat Ransomware Payloads
https://thehackernews.com/2025/01/experts-find-shared-codebase-linking.html
Tesla Charger Exploits Earn Hackers $129,000 at Pwn2Own - SecurityWeek
https://www.securityweek.com/tesla-charger-exploits-earn-hackers-129000-at-pwn2own/
Cloudflare CDN flaw leaks user location data, even through secure chat apps
https://www.bleepingcomputer.com/news/security/cloudflare-cdn-flaw-leaks-user-location-data-even-through-secure-chat-apps/
SonicWall Learns From Microsoft About Potentially Exploited Zero-Day - SecurityWeek
https://www.securityweek.com/sonicwall-learns-from-microsoft-about-potentially-exploited-zero-day/
TRIPLESTRENGTH Hits Cloud for Cryptojacking, On-Premises Systems for Ransomware
https://thehackernews.com/2025/01/triplestrength-targets-cloud-platforms.html
New Android Identity Check locks settings outside trusted locations
https://www.bleepingcomputer.com/news/security/new-android-identity-check-locks-settings-outside-trusted-locations/
Tracking Adversaries: Ghostwriter APT Infrastructure
https://blog.bushidotoken.net/2025/01/tracking-adversaries-ghostwriter-apt.html