Malicious npm Package “lotusbail” Discovered: WhatsApp Credential Theft and Backdoor Installation Cyber Threat Intelligence AegironDecember 24, 2025December 24, 20259 mins0 Package Overview Aspect Details Package Name lotusbail Package Registry npm Package Type Malicious Library Masquerade Target WhatsApp…continue reading..
CVE-2025-68561: AutomatorWP SQL Injection — Database Breach in 60 Seconds Threat Advisories AegironDecember 24, 2025December 24, 202513 mins0 Vulnerability Summary Aspect Details CVE ID CVE-2025-68561 Vulnerability Type SQL Injection (CWE-89) Affected Software AutomatorWP WordPress Plugin…continue reading..
CVE-2025-13183: Persistent Stored XSS Flaw in Otello Enables Silent User Session Compromise Threat Advisories AegironDecember 24, 2025December 24, 202527 mins0 Vulnerability Summary Detail Information CVE ID CVE-2025-13183 What is it? Stored Cross-Site Scripting (XSS) Where? Otello by…continue reading..
XRed Malware: A Silent Backdoor Exploiting Tax Compliance Urgency Latest Cyber Attack AegironDecember 24, 2025December 24, 202511 mins0 Executive Summary Between October and December 2025, a targeted malware campaign using the XRed backdoor compromised multiple…continue reading..
Tycoon Phishing Kit : How Phishing-as-a-Service Defeats Modern MFA Initial Access CyberDefenderDecember 24, 2025December 24, 20254 mins0 The Tycoon phishing kit is a commercial phishing-as-a-service (PhaaS) framework widely used to steal cloud identity credentials,…continue reading..
CVE-2025-68665: LangChain JS Serialization Injection via Trusted lc Object Spoofing Threat Advisories AegironDecember 24, 2025December 24, 20258 mins0 Overview CVE ID: CVE-2025-68665Product: LangChain (JavaScript / TypeScript ecosystem)Affected Area: Object serialization and deserialization (toJSON() and JSON.stringify())CVSS…continue reading..
CVE-2025-68664: When User Input Masquerades as Trusted LangChain Objects Threat Advisories AegironDecember 24, 2025December 24, 20259 mins0 Overview CVE ID: CVE-2025-68664Affected Product: LangChainVulnerability Type: Serialization Injection / Trust Boundary Bypass Affected Versions: CVSS v3.1…continue reading..
CVE-2025-68667: Unauthenticated Attackers Can Force Matrix Servers to Sign Fake Membership Events Threat Advisories AegironDecember 24, 2025December 24, 202510 mins0 Executive Summary CVE-2025-68667 is a high-risk security vulnerability affecting Continuwuity, a Matrix homeserver written in Rust. The…continue reading..
GhostLocker : Windows AppLocker weaponized to neutralize and control EDR Latest Cyber Attack CyberDefenderDecember 24, 2025December 24, 20255 mins0 GhostLocker is a new tool/technique revealed by researchers that shows how attackers can misuse Windows AppLocker —…continue reading..
CVE-2025-68669: Critical Remote Code Execution via Malicious Mermaid Diagrams in 5ire Threat Advisories AegironDecember 24, 2025December 24, 202510 mins0 Quick overview CVE ID: CVE-2025-68669Vulnerability name: 5ire Markdown / Mermaid Remote Code ExecutionSeverity: CriticalCVSS score: 9.6Risk level:…continue reading..
