Edge devices are under siege, and attackers are building a botnet from the ground up. A new malware campaign dubbed PolarEdge is actively targeting edge devices from Cisco and others. A job offer that is too good to be true has become a hacker’s gateway into the Web3 ecosystem. The Russian-speaking cybercrime group Crazy Evil has launched a social engineering campaign aimed at job seekers in the Web3 space, tricking them into downloading a malicious video conferencing app. Malware is hiding in plain sight, disguised as just another WordPress plugin. Read on for more.
01
A new malware campaign, PolarEdge, has been targeting edge devices from Cisco, ASUS, QNAP, and Synology, exploiting a critical security flaw in Cisco routers to create a botnet, with over 2,000 unique IP addresses compromised worldwide.
02
A Russian-speaking cybercrime group, Crazy Evil, conducted a social engineering campaign targeting job seekers in the Web3 space with a malicious GrassCall meeting app and deployed info-stealer.
03
DragonForce ransomware has recently targeted organizations in the Kingdom of Saudi Arabia, with a significant incident involving a data leak from a prominent Riyadh real estate and construction company.
04
Microsoft removed two popular VSC extensions, 'Material Theme – Free' and 'Material Theme Icons – Free,' from the marketplace due to allegedly containing malicious code, affecting nearly nine million users.
05
A high-severity vulnerability (CVE-2025-0514) in LibreOffice has been patched, which could allow attackers to execute malicious files on Windows systems by exploiting hyperlink handling mechanisms.
06
Attackers are using fake WordPress plugins with innocent-sounding names to inject malware and spam into websites, often evading detection by hiding them in the plugins directory and not in the core files.
07
A vulnerability was discovered in Cyberhaven's browser extension, which allowed attackers to steal arbitrary cookies from a victim's browser when they visited a malicious website.
08
The LCRYX ransomware, a VBScript-based threat, has re-emerged with advanced techniques to lock down Windows systems, encrypt files, and evade detection, demanding $500 in Bitcoin for decryption.
09
There has been a significant increase in phishing attacks targeting U.S. higher education institutions, with cybercriminals exploiting academic trust, financial aid systems, and university login portals.
10
vlt, an open-source JavaScript package manager, has launched reproduce, a tool that verifies whether published npm packages can be accurately rebuilt from their source code.
