DLL Side-loading is a mitre_attack tracked across 8 threat clusters and 8 intelligence report mentions on ThreatCluster. First observed November 3, 2025; most recent activity February 2, 2026.
A critical vulnerability in FortiWeb Web Application Firewall (WAF) has been actively exploited, allowing attackers to gain full administrative access to affected systems. Organizations using FortiWeb are at risk of…
China-linked cyber-espionage group Bronze Butler, also known as Tick, exploited a zero-day vulnerability in Motex Lanscope Endpoint Manager, identified as CVE-2025-61932. This critical request origin verification flaw…
Notepad++ has been hijacked by state-sponsored hackers, specifically a likely Chinese threat actor. The attackers compromised the software's update mechanism between June and December 2025, allowing them to redirect…
Cyber-espionage group Bronze Butler, also known as Tick, has exploited a zero-day vulnerability in Motex Lanscope Endpoint Manager, identified as CVE-2025-61932. This critical request origin verification flaw was used…
Acronis researchers have identified a malware campaign named LOTUSLITE that targets US government-related organizations using politically themed emails with ZIP attachments to install a backdoor for ongoing access. This…
A new malware strain named PDFSider has been deployed on the network of a Fortune 100 company in the finance sector. The attackers utilized social engineering tactics to gain remote access and installed an encrypted…
A phishing campaign is utilizing LinkedIn private messages to deliver Remote Access Trojans (RATs) through a legitimate open-source penetration testing tool. Cybersecurity researchers from ReliaQuest have identified…
A Chinese-linked cyberespionage group, known as 'Mustang Panda', targeted US government and policy officials using Venezuela-themed phishing emails. This campaign occurred shortly after the US operation to topple former…