Articles tagged: credential-harvesting
3 articles found
CVE-2025-55182 Exploited to Steal Sensitive Data
Cybersecurity experts warn of active exploitation of CVE-2025-55182, a critical vulnerability that can be used to steal sensitive data and gain unauthorized access to systems. This large-scale credential harvesting operation has affected 766 Next.js hosts, highlighting the need for prompt patching and security updates.
Phishing Operations Takedown and Cybercrime Syndicates Disrupted
Law enforcement agencies and threat hunters have made significant strides in disrupting major phishing operations and cybercrime syndicates, resulting in the takedown of Tycoon 2FA and LeakBase forum. These efforts highlight the importance of collaboration in combating cybercrime. Read on to learn more about these successes and their impact on the threat landscape.
RoguePilot & SANDWORM_MODE Threats Uncovered
High-severity vulnerabilities in GitHub Codespaces and npm packages have been discovered, posing significant risks to developers and the software supply chain. The RoguePilot flaw and SANDWORM_MODE campaign highlight the need for vigilance in AI-driven development tools and open-source dependencies.