Over 108,000 South Carolinians Warned After Social Security Numbers Exposed in 700Credit Breach Cyber Threat Intelligence AegironJanuary 1, 2026January 1, 20265 mins0 At the beginning of January, state officials warned more than 108,000 South Carolina residents that their personal…continue reading..
Out of the Box and Already Compromised: The Keenadu Android Supply-Chain Backdoor Cyber Threat Intelligence AegironJanuary 1, 2026January 1, 20269 mins0 Overview In early 2026, security researchers identified a pre-installed Android backdoor embedded directly into the system firmware…continue reading..
GhostAd: The Silent Browser Extension Attack Draining Crypto Wallets on macOS and Windows Cyber Threat Intelligence AegironJanuary 1, 2026January 1, 202611 mins0 Executive Summary The GhostAd Crypto Drain campaign is a financially motivated malware operation targeting browser-based cryptocurrency wallets…continue reading..
CVE-2025-34468: Critical Stack Buffer Overflow in libcoap Proxy Handling Enables Remote Code Execution Vulnerabilities AegironJanuary 1, 2026January 1, 20268 mins0 CVE ID: CVE-2025-34468Affected Component: libcoap (Constrained Application Protocol library)Affected Versions: All versions up to and including 4.3.5,…continue reading..
Ransomware Without Encryption: Why “Pure Exfiltration” Is the Defining Threat of 2026 Ransomware CyberDefenderJanuary 1, 2026January 1, 20266 mins0 For more than a decade, ransomware followed a predictable script: break in, encrypt everything, demand payment. Blue…continue reading..
CVE-2021-47744: Actively Exploited Hard-Coded Root Credential Enables Remote Device Takeover Vulnerabilities AegironJanuary 1, 2026January 1, 20268 mins0 Vulnerability Name: Hard-coded Root Credentials in Cypress Solutions CTM-200 / CTM-ONECVE ID: CVE-2021-47744Vendor: Cypress SolutionsAffected Products: CTM-200,…continue reading..
High-Risk Security Flaws Expose WordPress Sites to Account Takeover and Data Compromise Vulnerabilities AegironJanuary 1, 2026January 1, 20267 mins0 Vulnerability Details Product CVE ID Vulnerability Type CVSS Score Severity Attack Vector Authentication User Interaction Exploitability Exploit…continue reading..
Unleash Protocol Drained in Shai-Hulud-Style Crypto Attack Latest Cyber Attack CyberDefenderJanuary 1, 2026January 1, 20264 mins0 On January 1, 2026, the decentralized intellectual-property platform Unleash Protocol disclosed a major security breach in which…continue reading..
CVE-2025-61037: Simple File System Trick Leads to Full SYSTEM Takeover in SevenCs ORCA G2 Threat Advisories AegironJanuary 1, 2026January 1, 202610 mins0 Vulnerability Summary Why This Matters This vulnerability enables a user without administrative rights to escalate to full…continue reading..
HIGH-RISK WINDOWS KERNEL SECURITY MISCONFIGURATION IN ORCA G2 (CVE-2025-64699) ALLOWS SYSTEM-LEVEL COMPROMISE Threat Advisories AegironJanuary 1, 2026January 1, 20268 mins0 Title: Incorrect NULL DACL Applied to Device Object Allows Unauthorized Raw Disk AccessAffected Product: ORCA G2 (Version…continue reading..
