CVE-2025-67845: Static Asset Escape — Path Traversal Exposure in Mintlify Platform Vulnerabilities AegironDecember 19, 2025December 19, 202511 mins0 Vulnerability Summary Overview CVE-2025-67845 is a directory traversal vulnerability affecting the Static Asset Proxy Endpoint of the…continue reading..
Clop Ransomware Is Actively Exploiting Gladinet CentreStack Servers Impact CyberDefenderDecember 19, 2025December 19, 20255 mins0 The Clop ransomware group is once again making headlines—this time for targeting internet-facing Gladinet CentreStack file servers…continue reading..
Kimsuky : A North Korean APT – Nightmare for Android Users Latest Cyber Attack CyberDefenderDecember 19, 2025December 19, 20257 mins0 Kimsuky is a North Korea–linked advanced persistent threat (APT) group known for espionage, credential theft, and targeted…continue reading..
TorrentLoader Campaign — Malicious Payloads Hidden Behind Popular Movie Torrents Malware AegironDecember 18, 2025December 18, 202510 mins0 Executive overview TorrentLoader is a malware delivery campaign that abuses public torrent platforms and file-sharing communities to…continue reading..
Impersonation at Scale: Android Malware Masquerading as Government Services Malware AegironDecember 18, 2025December 18, 202511 mins0 Threat Details This threat involves a set of malicious Android applications that disguise themselves as official government…continue reading..
Malware: Agent Tesla — Phishing-Driven Credential Theft Campaigns Targeting the Travel Sector Malware AegironDecember 18, 2025December 19, 20259 mins0 Executive overview Agent Tesla is a well-known information-stealing malware that has been active for years and continues…continue reading..
Malware: ShadyPanda — Large-Scale Browser Extension Hijacking Operation Malware AegironDecember 18, 2025December 19, 20258 mins0 Threat classification Overview ShadyPanda refers to a coordinated, large-scale malicious operation focused on hijacking legitimate browser extensions…continue reading..
Malware: EtherRAT — React Server Components–Based Remote Access Trojan Malware AegironDecember 18, 2025December 19, 202510 mins0 Threat classification Executive summary Security researchers have confirmed that a North Korea–associated threat actor is actively exploiting…continue reading..
CVE-2025-55681: Local Privilege Escalation in Windows Desktop Window Manager (DWM) Vulnerabilities AegironDecember 18, 2025December 19, 20259 mins0 Key Details (Technical Snapshot) Technical Summary (What This Vulnerability Is) CVE-2025-55681 is a memory safety vulnerability in…continue reading..
BugTrace-AI: Using Generative AI to Rethink Vulnerability Detection Vulnerabilities CyberDefenderDecember 18, 2025December 18, 20254 mins0 BugTrace-AI is an open-source security testing framework that leverages generative artificial intelligence to assist in identifying vulnerabilities…continue reading..
