Google Warns of Phishing Attacks on Higher Education Institutions
Google and Mandiant warn of rising phishing attacks on U.S. higher education, exploiting academic schedules and institutional trust since August 2024. All about the attack These phishing attacks, active since [...]
Sliver C2 Server Flaw Enables TCP Hijacking and Data Interception
A critical flaw (CVE-2025-27090) in the Sliver C2 server allows attackers to hijack TCP connections using SSRF, enabling traffic interception and manipulation. Sliver C2 Server Flaw The vulnerability impacts Sliver [...]
Cybercriminals Deploy XLoader Malware Using Eclipse Jarsigner in ZIP Archives
A malware campaign spreading XLoader malware uses DLL side-loading by exploiting a legitimate Eclipse Foundation tool, jarsigner, which is part of the IDE package. The malware is distributed via ZIP [...]
Phishing targets CEOs, CTOs, and top decision-makers
A recent phishing campaign by Hackmosphere exposed vulnerabilities among top decision-makers, like CEOs and CTOs. The study highlights how cybercriminals use social engineering tactics to target high-ranking executives, stressing the [...]
Fake Chrome Update Drops DriverEasy Malware via Dropbox
Researchers discovered that the malware, disguised as a Chrome update, uses Dropbox’s API to steal credentials and is linked to North Korea’s “Contagious Interview” cyber-espionage campaign. Fake Chrome Update Installs [...]
FHN 
