Yes…it’s a new year – and I suck at posting to this blog b/c facebook has pwned me something awful. But hey…I just wanted to post so that you know I still exist. Here I am…
The Hackers New
- Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt
- TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign
- Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)
- Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices
- WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide
- Application Containment: How to Use Ringfencing to Prevent the Weaponization of Trusted Software
- EdgeStepper Implant Reroutes DNS Queries to Deploy Malware via Hijacked Software Updates
- ServiceNow AI Agents Can Be Tricked Into Acting Against Each Other via Second-Order Prompts
- Fortinet Warns of New FortiWeb CVE-2025-58034 Vulnerability Exploited in the Wild
- Sneaky 2FA Phishing Kit Adds BitB Pop-ups Designed to Mimic the Browser Address Bar