This week: Rage dropping 0-Day, Claude Mythos, things are different now, From UART to root, on a device made in China, where's the FCC?, More CUPS vulnerabilities, Russians are hacking routers, FCC ban doesn't stop them, Mongoose vulnerabilities, and FCC still does nothing, Renting virtual phones, Iran's cyber attacks, SHA-256 almost broken?, Catch...
Masjesu, also known as XorBot due to its use of XOR encryption, prioritizes low visibility and persistence, deliberately avoiding high-profile targets like Department of Defense IP ranges.
APT28, also known as Fancy Bear, compromised small office/home office routers, altering their DNS settings to redirect traffic to attacker-controlled virtual private servers.
Attackers could combine a pair of newly discovered vulnerabilities in the Common Unix Printing System used by Linux and other Unix-like systems to facilitate remote code execution and root file overwrite on the targeted network without authentication, reports The Register.
A digital forensics investigator, identified only as TR, was called in when a client suspected a rival had infiltrated their systems after a data breach.
Activity of botnets has increased by 26% and 24% during the first and second half of 2025, respectively, with the escalation primarily driven by U.S.-based bots and nodes, as well as the ongoing evolution of the Mirai malware, according to HackRead.
