The campaign commences with a spear-phishing email containing a ZIP archive with a malicious LNK file written in Pashto, designed to exploit the familiarity of the language within the Afghan government.
Tag: file
Global Security News
New FROST attack exploits browser features for website and app tracking
The FROST attack leverages the Origin Private File System (OPFS), a browser feature, to measure Solid-State Drive (SSD) access speeds.
Global Security News
‘Claude Code install’ search result leads to ClickFix infostealer attack
The attack leverages a polyglot file, heavy obfuscation and fileless execution to evade detection.
AI, Global Security News, malware
Cross-Platform NPM Stealer, (Fri, May 22nd)
I found a Node.js stealer that looked pretty well obfuscated. The file was not running out-of-the-box because it was uploaded on VT as “extracted-decoded.js” (and reformated). The SHA256 is 049300aa5dd774d6c984779a0570f59610399c71864b5d5c2605906db46ddeb9[1]. It did not run properly in a sandbox so only a static analysis was performed. The key point is that it is a cross-platform stealer…
Global Security News
Avada Builder Flaws Expose One Million WordPress Sites
Avada Builder flaws allowed file read and SQL injection on one million WordPress sites
AI, Global Security News
Hugging Face Packages Weaponized With a Single File Tweak
A tokenizer library file present in Hugging Face AI models can be manipulated to hijack the model’s outputs and exfiltrate data.
AI, Cybersecurity, Exploits, Global Security News, Risk Management
New cPanel vulnerabilities could allow file access and remote code execution
cPanel fixed three flaws that could allow file reads, code execution, and privilege escalation. No active exploitation has been reported yet. cPanel has released security updates to fix three vulnerabilities affecting cPanel & WHM that could allow attackers to read files, execute code, or escalate privileges on vulnerable systems. Below are the descriptions for these…
AI, Cybersecurity, Global Security News, malware, Network Security
New Deep#Door RAT uses stealth and persistence to target Windows
Deep#Door hides a Python RAT inside a batch file, kills Windows defenses, survives via multiple persistence methods, and exfiltrates data through a public TCP tunnel. Security researchers at Securonix uncovered a sophisticated malware campaign called Deep#Door. Threat actors employed a stealthy Python-based backdoor that uses a surprisingly simple delivery method to achieve deep, persistent access…
AI, Apps, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security
Critical bug in CrowdStrike LogScale let attackers access files
CrowdStrike fixed CVE-2026-40050 in LogScale self-hosted, a critical flaw allowing unauthenticated file access via path traversal. CrowdStrike recently disclosed a critical vulnerability, tracked as CVE-2026-40050, affecting its LogScale self-hosted product. The flaw enables unauthenticated path traversal, which could allow a remote attacker to read arbitrary files from the server filesystem. “CrowdStrike has released security updates…
AI, Global Security News, malware
A .WAV With A Payload, (Tue, Apr 21st)
There have been reports of threat actors using a .wav file as a vector for malware. It’s a proper .wav file, but they didn’t use staganography. The .wav file will play, but you’ll just hear noise: That’s because the TAs have just replaced the bytes that encode the sound with the BASE64 representation of their…
Global Security News
Microsoft tests Windows Explorer speed, performance improvements
Microsoft is rolling out multiple File Explorer changes to Windows 11 users in the Insider program, including improvements to launch speed and performance. […]
AI, Apps, Compliance, Cybersecurity, Endpoint, Global Security News, Network Security
Transform security logs into OCSF format using a configuration-driven ETL solution
Security logs capture essential security-related activities, such as user sign-ins, file access, network traffic, and application usage. These logs are important for monitoring, detecting, and responding to potential security events. The Open Cybersecurity Schema Framework (OCSF) addresses this challenge by providing a standardized format to represent security events, ensuring consistent and efficient data handling across…
AI, Global Security News
How to Switch AI Chatbots—and Why You Might Want To
Your chatbot has a file on you. Here’s how to access, edit and migrate your AI’s memories.
Global Security News, malware, Network Security, Risk Management
Advenica’s File Scanner Kiosk scans USB media for malware
Advenica announced the File Scanner Kiosk, a system that scans USB media for malware and helps businesses reduce infection risk. With the reliance on external media for file transfers, organisations face increased vulnerability to malware. The File Scanner Kiosk addresses this challenge by providing an automated, reliable, and efficient way to scan USB media for…
Global Security News
Critical Vulnerability in Ninja Forms Exposes WordPress Sites
Ninja Forms File Upload RCE via unauthenticated arbitrary file upload; update to 3.3.27 immediately
Global Security News
Hackers exploit critical flaw in Ninja Forms WordPress plugin
A critical vulnerability in the Ninja Forms File Uploads premium add-on for WordPress allows uploading arbitrary files without authentication, which can lead to remote code execution. […]
AI, Global Security News
New Progress ShareFile flaws can be chained in pre-auth RCE attacks
Two vulnerabilities in Progress ShareFile, an enterprise-grade secure file transfer solution, can be chained to enable unauthenticated file exfiltration from affected environments. […]
AI, Global Security News
When algorithms decide: The hidden role of AI in insurance claims
GUEST OPINION: When you file an insurance claim after an accident, you probably assume that a human adjuster will review your case file and decide how much compensation you’ll get. That may have been true several years ago, but today’s claims are being evaluated by artificial intelligence (AI) algorithms. Many of today’s insurance companies rely…
AI, Compliance, Data Breaches, Data Security, Endpoint, Global Security News, Network Security, Risk Management
Beyond File Servers: Securing Unstructured Data in the Era of AI
File servers still exist for legacy storage and governance, but most modern workflows now happen in collaboration tools, code platforms, chats, and AI systems. File servers remain, but they are no longer central to operations. They still appear important on paper: legacy project shares with strict permissions, legal drives with structured folders, and network areas…
Global Security News
Everpure extends ActiveCluster support for file
COMPANY NEWS: Providing enterprises with the freedom to move and protect file data advances Enterprise Data Cloud Vision.
AI, Global Security News
Analyzing “Zombie Zip” Files (CVE-2026-0866), (Wed, Mar 11th)
A new vulnerability (CVE-2026-0866) has been published: Zombie Zip. It’s a method to create a malformed ZIP file that will bypass detection by most anti-virus engines. The malformed ZIP file can not be opened with a ZIP utility, a custom loader is required. The trick is to change the compression method to STORED while the contend…
AI, Global Security News, malware
RAR Occasion: Unzipping an Attacker’s Playbook at Cisco Live Amsterdam
Cisco Live Amsterdam 2026 SOC detected, investigated, and neutralized a malicious file delivered via email—leveraging Cisco XDR, Splunk Attack Analyzer, Secure Malware Analytics, and Endace.
AI, Apps, Global Security News
Nasuni Acquires Resilio to Accelerate Edge File Access & AI
Nasuni has acquired Resilio to strengthen high-speed file synchronization and edge acceleration capabilities within its cloud-native file services platform. The Boston-based unstructured data management vendor announced March 4 that the deal brings Resilio’s file synchronization and caching technology into the Nasuni File Data Platform. The combined offering is designed to improve end-user access to shared…
Exploits, Global Security News
Bruteforce Scans for CrushFTP , (Tue, Mar 3rd)
CrushFTP is a Java-based open source file transfer system. It is offered for multiple operating systems. If you run a CrushFTP instance, you may remember that the software has had some serious vulnerabilities: CVE-2024-4040 (the template-injection flaw that let unauthenticated attackers escape the VFS sandbox and achieve RCE), CVE-2025-31161 (the auth-bypass that handed over the…
Exploits, Global Security News
SolarWinds Serv-U hit by four critical RCE-level vulnerabilities
SolarWinds has fixed four critical vulnerabilities in its popular Serv-U file transfer solution, which is used by businesses and organizations of all sizes. If exploited, the flaws may allow attackers to create a system admin user and/or execute code as a privileged account. The SolarWinds Serv-U vulnerabilities SolarWinds Serv-U runs on Windows or Linux and…
Exploits, Global Security News
SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code Execution
SolarWinds has released updates to address four critical security flaws in its Serv-U file transfer software that, if successfully exploited, could result in remote code execution. The vulnerabilities, all rated 9.1 on the CVSS scoring system, are listed below – CVE-2025-40538 – A broken access control vulnerability that allows an attacker to create a system…
Global Security News
Cloud Storage Always Full? Follow These Three Steps to Clean It Up.
How to declutter your personal data, shrink file sizes and—if you want—ditch the cloud entirely.
Cybersecurity, Global Security News
How To Recover Lost Files On A Computer [EXPERT GUIDE]
If you are reading this, you may have lost a file or files (as the case may be) recently on your PC. This post will show you how to recover lost files on a computer. There are many ways you can lose a file on a computer, but we will check the three most common…
Global Security News, Scams
Taxing times: Top IRS scams to look out for in 2026
It’s time to file your tax return. And cybercriminals are lurking to make an already stressful period even more edgy.