Zero-Day Flaws in Sysinternals Enable DLL Injection on Windows
A zero-day vulnerability in Microsoft Sysinternals tools exposes Windows systems to DLL injection attacks, allowing attackers to execute malicious code and potentially compromise the system. Zero-Day Flaws in Sysinternals Enable [...]
BADBOX Botnet Infects 190,000+ Android Devices
The BADBOX botnet has infected over 192,000 Android devices worldwide, expanding from low-cost brands to major ones like Yandex TVs and Hisense phones, exposing supply chain risks. BADBOX Botnet BADBOX [...]
1-Click RCE Flaw in Voyager PHP Lets Attackers Run Arbitrary Code
A newly found flaw in Voyager PHP, a Laravel management tool, risks RCE on affected servers. Discovered via SonarQube Cloud scans, it lets authenticated users execute code by clicking a [...]
Android Update Fixes Linux Kernel RCE Flaw
On February 3, 2025, Google released the February Android Security Bulletin, fixing 47 vulnerabilities. One major flaw, CVE-2024-53104, in the Linux kernel’s UVC driver, could let attackers execute remote code [...]
Hackers Leverage AWS and Microsoft Azure for Massive Cyber Attacks
Silent Push coined “infrastructure laundering” to describe cybercriminals exploiting cloud services for illegal activities. They rent IPs from AWS and Azure, then link them to criminal sites via CDNs like [...]
FHN 
