Erlang OTP SSH Vulnerability Exposes Systems
A critical vulnerability, CVE-2025-32433, has been disclosed in the Erlang/OTP SSH, enabling unauthenticated remote code execution.
Tag: Cyber Alerts
XorDDoS Expands Attacks to Docker Servers
XorDDoS malware continues to pose significant risks, especially to the United States, which accounted for 71.3% of attacks between November 2023 and February...
CISA Adds NTLM Flaw to Exploited List
CISA added a medium-severity Windows vulnerability, CVE-2025-24054, to its Known Exploited Vulnerabilities catalog. The vulnerability is a NTLM
CrazyHunter Uses GitHub Tools for Attacks
The CrazyHunter hacker group has been targeting critical sectors in Taiwan, including healthcare, education, and industry. Since early 2025
State Hackers Use ClickFix to Deploy Malware
State-sponsored hacking groups from Iran, North Korea, and Russia have increasingly used the ClickFix tactic in targeted malware campaigns
CISA Warns of Oracle Cloud Access Risks
The Cybersecurity and Infrastructure Security Agency (CISA) issued a public warning regarding unauthorized access to a legacy Oracle Cloud environment.
Windows Task Scheduler Flaws Enable Attacks
Researchers have identified four vulnerabilities in Windows task scheduling, posing significant risks of privilege escalation and log tampering.
ToneShell Used in Mustang Panda Attacks
Security researchers have uncovered new activities attributed to Mustang Panda, a China-sponsored espionage group. Known for targeting government
Apple Fixes Actively Exploited Flaws in iOS
Apple released security updates for iOS, iPadOS, macOS Sequoia, tvOS, and visionOS to address two actively exploited vulnerabilities.
Agent Tesla Malware Uses PowerShell Scripts
Researchers from Palo Alto Networks uncovered a series of malicious spam campaigns using Agent Tesla malware. The attack starts with
© 2025 | CyberMaterial | All rights reserved