Veeam Patches CVE-2025-23121: Critical RCE Bug Rated 9.9 CVSS in Backup & Replication

by bitroxadmin | Jun 18, 2025 | Uncategorized

Veeam has rolled out patches to contain a critical security flaw impacting its Backup & Replication software that could result in remote code execution under certain conditions. The security defect, tracked as CVE-2025-23121, carries a CVSS score of 9.9 out of a...

Google Chrome Zero-Day CVE-2025-2783 Exploited by TaxOff to Deploy Trinper Backdoor

by bitroxadmin | Jun 17, 2025 | Uncategorized

A now-patched security flaw in Google Chrome was exploited as a zero-day by a threat actor known as TaxOff to deploy a backdoor codenamed Trinper. The attack, observed in mid-March 2025 by Positive Technologies, involved the use of a sandbox escape vulnerability...

LangSmith Bug Could Expose OpenAI Keys and User Data via Malicious Agents

by bitroxadmin | Jun 17, 2025 | Uncategorized

Cybersecurity researchers have disclosed a now-patched security flaw in LangChain’s LangSmith platform that could be exploited to capture sensitive data, including API keys and user prompts. The vulnerability, which carries a CVSS score of 8.8 out of a maximum...

Silver Fox APT Targets Taiwan with Complex Gh0stCringe and HoldingHands RAT Malware

by bitroxadmin | Jun 17, 2025 | Uncategorized

Cybersecurity researchers are warning of a new phishing campaign that’s targeting users in Taiwan with malware families such as HoldingHands RAT and Gh0stCringe. The activity is part of a broader campaign that delivered the Winos 4.0 malware framework earlier...

Google Warns of Scattered Spider Attacks Targeting IT Support Teams at U.S. Insurance Firms

by bitroxadmin | Jun 17, 2025 | Uncategorized

The notorious cybercrime group known as Scattered Spider (aka UNC3944) that recently targeted various U.K. and U.S. retailers has begun to target major insurance companies, according to Google Threat Intelligence Group (GTIG). “Google Threat Intelligence Group...