Huntress continues to observe in-the-wild exploitation of CVE-2025-30406, a critical vulnerability in Gladinet CentreStack and Triofox
22.04.2025 13:07 β π 1 π 2 π¬ 1 π 0
Detecting Fake CAPTCHA Campaigns: ClickFix, ClearFake, and Etherhide
Summary
One of my good friends and former SOC protΓ©gΓ©βdropping π₯ analysis on a Monday afternoon. Epic work, @thecyber.dad π
www.thecyber.dad/p/detecting-...
22.04.2025 01:01 β π 7 π 2 π¬ 0 π 0
BREAKING.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
15.04.2025 17:23 β π 685 π 417 π¬ 37 π 204
cert.pl/uploads/docs... CERT Poland annual report.
04.04.2025 06:17 β π 0 π 0 π¬ 0 π 0
Retro-style poster titled "Now You're Debugging with Power!" promoting the Sysinternals Suite by Microsoft. It depicts a smiling technician in a suit holding a wrench, standing before a futuristic control panel, with an atomic rocket illustration overhead. The poster lists various Sysinternals tools like Process Explorer, Autoruns, Proc Monitor, Diskmon, RAMMA, and VMMap, each humorously described with atomic-era metaphors, emphasizing their capabilities in Windows diagnostics. The visual style evokes mid-20th-century propaganda posters, using bold typography and a warm, vintage color palette.
Here is one for you: 50's/60's space atomic age ads.
01.04.2025 03:26 β π 38 π 8 π¬ 1 π 0
Use one Virtual Machine to own them allβββactive exploitation of ESXicape
A chain of three zero days allow threat actors to escape a Virtual Machine.
Update your VMware ESX farms ASAP.
There's an in the wild exploit chain being used which does VM -> Hypervisor escape, across all versions of ESXi. Allows full cluster access.
doublepulsar.com/use-one-virt...
05.03.2025 11:59 β π 59 π 29 π¬ 3 π 2
