US Authorities Seize $1m from BlackSuit Ransomware Group

Threat Score:

Infosecurity Magazine

1 day ago

Part of cluster #1862

Overview

The US Department of Justice has announced the seizure of domains, servers and $1m in proceeds from the BlackSuit ransomware group...

Continue Reading on Original Site

5 articles

Zoom patches critical Windows flaw allowing privilege escalation

Security Affairs • 1 hour ago

Zoom fixed a critical Windows client flaw (CVE-2025-49457, CVSS 9.6) involving an untrusted path that could enable privilege escalation. Cloud-based video conferencing and online collaboration platform Zoom addressed a critical security flaw, tracked as CVE-2025-49457 (CVSS score of 9.6) in Zoom Clients for Windows. An unauthenticated user can exploit the vulnerability to conduct an […]

Score

Stop Reacting; Start Anticipating: The Global State of Threat Intelligence

Brighttalk • 18 hours ago

Presented by Jitin Shabadu, Forrester Analyst | Jayce Nichols, Director, Intelligence Solutions, Google Threat Intelligence Group

Score

Critical WordPress Plugin Vulnerability Exposes 70,000+ Sites to RCE Attacks

Cybersecurity News • 44 minutes ago

A critical security vulnerability has been discovered in the popular “Database for Form 7, WPforms, Elementor forms” WordPress plugin, potentially exposing over 70,000 websites to remote code execution attacks. The vulnerability, tracked as CVE-2025-7384 with a maximum CVSS score of 9.8, affects all versions up to and including 1.4.3 and was publicly disclosed on […]

Score

Xerox FreeFlow Core Vulnerability Allows Remote Code Execution — PoC Now Public

GB Hackers • 4 hours ago

Xerox FreeFlow Core Vulnerability Allows Remote Code Execution — PoC Now Public Security researchers have disclosed critical vulnerabilities in Xerox FreeFlow Core that enable unauthenticated remote attackers to executearbitrary codeon vulnerable systems. The proof-of-concept exploits are now publicly available, raising immediate concerns for organizations using the popular print orchestration platform. Critical Vulnerabilities Discovered Cybersecurity firm Horizon3.aidiscoveredtwo severe vulner

Score

Proxyware Campaign Piggybacks on Popular YouTube Video Download Services

GB Hackers • 2 hours ago

Proxyware Campaign Piggybacks on Popular YouTube Video Download Services The AhnLab Security Intelligence Center (ASEC) has uncovered fresh instances of proxyware distribution by threat actors leveraging deceptive advertising on freeware sites. Building on prior reports, such as the “DigitalPulse Proxyware Being Distributed Through Ad Pages” analysis, this campaign continues to exploit unwitting users in South Korea, installing unauthorized bandwidth-sharing tools like DigitalPulse and Honeygain

Score

ATTACK TYPES

Data Exfiltration

Double Extortion

Phishing

RDP Exploitation

Ransomware

MITRE ATT&CK

T1005

T1043

T1046

T1053

T1057

RANSOMWARE

BlackSuit

Royal

COUNTRIES

Canada

France

Germany

Ireland

Lithuania

INDUSTRIES

Education

Energy

Healthcare

AGENCIES

DHS

Department of Homeland Security

Department of Justice

FBI

Homeland Security Investigations

ARTICLE INFORMATION

Article #10990

Published 1 day ago

Infosecurity Magazine

THREAT HUNTING

THREAT INTELLIGENCE

BUSINESS INTELLIGENCE

Save to Folder

Article Intelligence

THREAT HUNTING

THREAT INTELLIGENCE

BUSINESS INTELLIGENCE

Overview

Related Articles

Zoom patches critical Windows flaw allowing privilege escalation

Stop Reacting; Start Anticipating: The Global State of Threat Intelligence

Critical WordPress Plugin Vulnerability Exposes 70,000+ Sites to RCE Attacks

Xerox FreeFlow Core Vulnerability Allows Remote Code Execution — PoC Now Public

Proxyware Campaign Piggybacks on Popular YouTube Video Download Services

Save to Folder

Article Intelligence

We use cookies

Cookie Settings

Essential Cookies

Analytics Cookies

Performance Cookies

Marketing Cookies