sctocs

add a heading (6)

Workday Data Breach: Hackers Exploit Third-Party CRM

Workday, a well-known provider of enterprise cloud applications for finance and human resources, has confirmed it was impacted by a sophisticated social engineering campaign that led to a data breach involving a third-party Customer Relationship Management (CRM) system. No Customer Data Compromised The company clarified that its customer data and tenant environments were not affected, […]

Workday Data Breach: Hackers Exploit Third-Party CRM Read More »

add a heading (5)

North Korean Hackers Leak Stealthy Linux Malware Online

North Korean Linux Rootkit Leak Exposes Advanced Espionage Tools In a major cybersecurity incident, sensitive hacking tools and technical documentation linked to a North Korean threat actor have been leaked online. The disclosure, first highlighted in Phrack Magazine, includes advanced exploit methods, system compromise logs, and, most concerning, a stealth Linux rootkit capable of bypassing

North Korean Hackers Leak Stealthy Linux Malware Online Read More »

add a heading (4)

Back-to-School Shopping Scams Trick Users Into Fake Sites

Back-to-School Shopping Scams Surge as Cybercriminals Exploit Seasonal Rush As families nationwide gear up for the school season, cybercriminals are taking advantage of the increased demand for online shopping with a wave of advanced scams. Rising Online Threats During Seasonal Spending Criminals are leveraging higher shopping activity to launch malicious campaigns that target individuals searching

Back-to-School Shopping Scams Trick Users Into Fake Sites Read More »

add a heading (3)

Over 1000 N-able N-central RMM Servers Exposed to 0-Day

Over 1,000 N-able N-central Servers Exposed to Critical Zero-Day Vulnerabilities More than 1,000 exposed and unpatched N-able N-central Remote Monitoring and Management (RMM) servers are at risk due to two newly identified zero-day vulnerabilities (CVE-2025-8875 and CVE-2025-8876). According to data confirmed on August 15, 2025, 1,077 unique IPs were detected running outdated N-central versions. This

Over 1000 N-able N-central RMM Servers Exposed to 0-Day Read More »

add a heading (1)

Supply Chain: Malicious PyPI, npm Packages Exploit Dependencies

Malicious Python and npm Packages Uncovered in Supply Chain Attacks Cybersecurity researchers have uncovered a malicious package on the Python Package Index (PyPI) that introduced harmful behavior through a hidden dependency, enabling persistence and remote code execution. The package, named termncolor, achieved its malicious activity via a dependency called colorinal, as detailed by Zscaler ThreatLabz.

Supply Chain: Malicious PyPI, npm Packages Exploit Dependencies Read More »

add a heading (18)

Microsoft IIS Web Deploy Flaw Allows Remote Code Execution

A high-severity vulnerability has been identified in Microsoft’s Web Deploy tool that could allow authenticated attackers to perform remote code execution (RCE) on vulnerable systems. The flaw, tracked as CVE-2025-53772, was revealed on August 12, 2025, and has been assigned a CVSS score of 8.8, making it a significant security concern. Technical Details The issue

Microsoft IIS Web Deploy Flaw Allows Remote Code Execution Read More »

add a heading (16)

New Gmail Phishing Attack Steals Credentials via Login Flow

A sophisticated phishing campaign is actively targeting Gmail users by exploiting legitimate Microsoft Dynamics infrastructure to bypass security protections and steal user credentials. The scam begins with deceptive “New Voice Notification” emails, appearing to come from trusted voicemail services. These messages include spoofed sender details and prominent “Listen to Voicemail” buttons that redirect victims through

New Gmail Phishing Attack Steals Credentials via Login Flow Read More »

add a heading (15)

ImageMagick Vulnerabilities Trigger Memory Corruption, Overflows

Multiple ImageMagick Vulnerabilities Expose Users to Memory Corruption and Integer Overflow Risks Security experts have identified four critical vulnerabilities in ImageMagick, one of the most popular open-source image processing tools, potentially putting millions of users at risk. Discovered by researcher “urban-warrior” and reported three days ago, the flaws include two high-risk issues that could allow

ImageMagick Vulnerabilities Trigger Memory Corruption, Overflows Read More »

add a heading (14)

Hackers Exploit Microsoft Teams Requests for Remote Access

Hackers Pose as IT Teams to Exploit Microsoft Teams and Gain Remote Access A newly discovered social engineering campaign run by the EncryptHub threat group combines impersonation techniques with technical exploitation to compromise enterprise systems. Researchers report that the Russian-linked group is disguising themselves as IT support staff and using Microsoft Teams requests to gain

Hackers Exploit Microsoft Teams Requests for Remote Access Read More »

add a heading (13)

Palo Alto Releases Mega Malware Analysis Guide for Analysts

Palo Alto Networks Releases Comprehensive Malware Analysis Tutorial on Remcos RAT Palo Alto Networks has published a highly detailed malware analysis tutorial, showcasing the dissection of a complex .NET-based loader that ultimately delivers the Remcos remote access trojan (RAT). Abuse of Legitimate Environments The case underlines a growing threat trend: adversaries increasingly misuse legitimate development

Palo Alto Releases Mega Malware Analysis Guide for Analysts Read More »