Hosted on MSN

'Dante' Malware reportedly targeted Chrome users through zero-day exploit

Google Chrome is generally thought of as a pretty safe browser to use, but that doesn’t make it an impenetrable fortress, and a Chrome exploit used to distribute malware is the latest proof of that. A ...
Healthcare IT News

Cyber threat roundup: Akira ransomware, zero-day vulnerabilities and more

CISA and its partners have a new warning for small and medium-sized healthcare organizations, who should beware of some ...

Hackers turn Cisco and Citrix zero-days into a malware nightmare

The researchers discovered the intrusion while investigating a Citrix Bleed Two vulnerability which was also being exploited as a zero-day. The newly found bug is now tracked as CVE-2025-20337 and has ...
TechJuice

ShadowPad Backdoor Exploits WSUS Zero-Day to Breach Enterprise Environments

The ShadowPad malware explodes in the wild exploiting a WSUS zero-day (CVE-2025-59287) to gain full system access on Windows servers.
Bleeping Computer

Italian spyware vendor linked to Chrome zero-day attacks

A zero-day vulnerability in Google Chrome, exploited in Operation ForumTroll earlier this year, delivered malware linked to Italian spyware vendor Memento Labs, born after IntheCyber Group acquired ...
Bleeping Computer

Ivanti warns of new Connect Secure flaw used in zero-day attacks

Ivanti is warning that hackers exploited a Connect Secure remote code execution vulnerability tracked as CVE-2025-0282 in zero-day attacks to install malware on appliances. The company says it became ...
The Hacker News

RomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent Malware

RomCom just hit a US engineering firm via SocGholish for the first time, deploying Mythic Agent before defenders cut the ...
Crypto News

Massive NPM Supply-Chain Attack Targets ENS-Linked Libraries in Shai Hulud Breach

Shai-Hulud malware infiltrates 490 NPM packages, stealing API keys and credentials from ENS and major crypto development ...