DCRat Malware Uses YouTube for Credential Theft
In 2025, a new wave of DCRat backdoor attacks has emerged, using the Malware-as-a-Service (MaaS) model. Cybercriminals behind this campaign distribute the malware and offer technical support and infrastructure for [...]
PHP XXE Vulnerability Exposes Config Files and Private Keys
A newly discovered XML External Entity (XXE) injection vulnerability in PHP allows attackers to bypass security measures and access sensitive configuration files and private keys. PHP XXE Vulnerability Web security [...]
CISA Warns of Windows Win32 Kernel Vulnerability
CISA has warned about a critical Windows Win32 kernel vulnerability, identified as CVE-2025-24983. This use-after-free flaw in the Win32k component could let authorized attackers gain elevated privileges. It falls under [...]
Android Zygote Flaw Enables Code Execution and Privilege Escalation
A major vulnerability, CVE-2024-31317, has been discovered in Android, allowing attackers to exploit the Zygote process for system-wide code execution and privilege escalation. This flaw affects devices running Android 11 [...]
New Rust Code in Linux Kernel Addresses Memory Bugs
Rust in the Linux kernel enhances memory safety, a key focus in development. Launched in 2021 by Miguel Ojeda, Rust for Linux aims to reduce vulnerabilities in new drivers and [...]
Get Social