Threat Report Overview This week's cybersecurity landscape presents a mix of positive developments and concerning threats. The intelligence update, published by AlienVault on May 16, 2025, provides a comprehensive overview of recent events that highlight both
Continue ReadingAuthor: essadmin
Excel Obfuscation Regex Gone Rogue
Threat Overview The Security Operations Center (SOC) has identified a new and sophisticated threat report published by AlienVault on May 15, 2025. The report, titled Excel Obfuscation: Regex Gone Rogue, details an advanced attack technique that
Continue Reading
FortiVoice Zero Day Exploit Alert CVE 2025 32756
Threat Overview The Security Operations Center (SOC) has received a critical threat report from AlienVault, published on May 14, 2025. The report highlights a severe zero-day vulnerability, identified as CVE-2025-32756, affecting multiple Fortinet products, including FortiVoice.
Continue Reading
APT37 Hackers Use Weaponized LNK Files and Dropbox for Command-and-Control Operations
Threat Overview The Security Operation Center (SOC) has recently identified a significant threat report published by Arrington on May 13, 2025. The report, titled APT37 Hackers Use Weaponized LNK Files and Dropbox for Command-and-Control Operations, provides
Continue Reading
Marbled Dust leverages zero-day in Output Messenger for regional espionage
Threat Overview The Security Operations Center (SOC) has received a critical threat report published by AlienVault on May 12, 2025. The report details the activities of Marbled Dust, a Türkiye-affiliated espionage threat actor, which has been
Continue Reading
Threat Brief CVE 2025 31324
Threat Overview The Security Operations Center (SOC) has identified a critical threat report published by AlienVault on May 12, 2025. The report, titled Threat Brief: CVE-2025-31324, highlights a severe vulnerability in the SAP NetWeaver Application Server
Continue Reading
FreeDrain Unmasked Uncovering an Industrial Scale Crypto Theft Network
Threat Overview The Security Operations Center (SOC) has recently received a critical threat report published by AlienVault on May 9, 2025. This report, titled FreeDrain Unmasked | Uncovering an Industrial-Scale Crypto Theft Network, sheds light on
Continue Reading
Europol Shuts Down Six DDoS-for-Hire Services Used in Global Attacks
Threat Overview In an unprecedented move, Europol has successfully dismantled six Distributed Denial of Service (DDoS)-for-hire services that were instrumental in orchestrating global cyber-attacks. This operation underscores the growing threat posed by DDoS attacks and highlights
Continue Reading
COLDRIVER Using New Malware To Steal Documents From Western Targets And NGOs
Threat Overview The Security Operations Center (SOC) has identified a significant threat report published by AlienVault on May 7, 2025. The report details the activities of COLDRIVER, a Russian government-backed threat group that has developed new
Continue Reading
Windows Zero Day Vulnerability Exploited in Wild to Deploy Play Ransomware
Threat Overview A zero-day vulnerability in Microsoft Windows has been actively exploited by cybercriminals associated with the Play ransomware operation. This alarming development was reported by CyberHunter_NL on May 7, 2025, and corroborated by both Microsoft
Continue Reading