Loader to Stealer: Tracking Amadey’s GitLab-Based StealC Campaign Command and Control CyberDefenderDecember 25, 2025December 25, 20257 mins0 This article documents a malware campaign in which the Amadey loader is used to deploy the StealC…continue reading..
RansomHouse: When Data Theft Is the Ransom Latest Cyber Attack CyberDefenderDecember 25, 2025December 25, 202514 mins0 RansomHouse is a cyber-extortion group active since 2021. Unlike traditional ransomware gangs that rely on encrypting files,…continue reading..
Arcane Werewolf and the Stealth Infiltration of Russian Manufacturing Latest Cyber Attack CyberDefenderDecember 25, 2025December 25, 20256 mins0 Arcane Werewolf, sometimes discussed alongside the “Mythic Likho” campaign name, is a threat cluster reported by security…continue reading..
Goffee Cyberespionage Campaign: Technical Analysis of a Targeted Operation Against Russian Military and Defense Organizations Initial Access CyberDefenderDecember 25, 2025December 25, 20259 mins0 The Goffee cyberespionage group has conducted a targeted espionage campaign against Russian military personnel and defense-industry organizations.…continue reading..
M365 Device Code Phishing : When MFA Works Against You Initial Access CyberDefenderDecember 25, 2025December 25, 20259 mins0 UNK_AcademicFlare is a Russia-linked threat actor (the “UNK” prefix usually means unattributed / newly tracked) observed abusing…continue reading..
WebRAT via GitHub: Proof-of-Concepts as a Malware Delivery Channel Cyber Threat Intelligence AegironDecember 24, 2025December 24, 202521 mins0 Fake Exploit Code as an Active Malware Distribution Channel (Dec 23) The security research ecosystem is increasingly…continue reading..
Shai-Hulud: When npm Installs Became a Worm Cyber Threat Intelligence AegironDecember 24, 2025December 24, 202514 mins0 Shai-Hulud Campaign: Why This Attack Is Different The Shai-Hulud campaign marks a turning point in how supply…continue reading..
CVE-2025-11419: Red Hat Keycloak TLS Client-Initiated Renegotiation DoS Threat Advisories AegironDecember 24, 2025December 24, 202510 mins0 Vulnerability Header Attribute Details CVE ID CVE-2025-11419 CVSS Score 7.5 (High) Severity High / Important Published December…continue reading..
CVE-2025-61882: Critical Oracle E-Business Suite Vulnerability Being Actively Exploited by Cl0p Ransomware Group Threat Advisories AegironDecember 24, 2025December 24, 20258 mins0 What’s Going On Right Now On December 23, 2024, Oracle issued a critical security advisory for a…continue reading..
Stealka Infostealer: The Windows Malware Stealing Your Cryptocurrency and Passwords Right Now Cyber Threat Intelligence AegironDecember 24, 2025December 24, 202516 mins0 What’s Actually Going On There’s a piece of malware called Stealka that’s been actively spreading since December…continue reading..
