Tag PowerShell

GitHub Scanner for React2Shell (CVE-2025-55182) Revealed as Malware – Hackread: Cybersecurity News, Data Breaches, AI, and More

Malicious GitHub Repository Impersonating CVE-2025-55182 Scanner Exposed A GitHub repository masquerading as a vulnerability scanner for CVE-2025-55182, commonly known as “React2Shell,” was recently uncovered as a source of malware. The project, titled React2shell-scanner, was associated with the GitHub user niha0wa but has been removed from the platform after community alerts…

Read MoreGitHub Scanner for React2Shell (CVE-2025-55182) Revealed as Malware – Hackread: Cybersecurity News, Data Breaches, AI, and More

Hackers-for-Hire Group Unveils New ‘PowerPepper’ In-Memory Malware

Cybersecurity Experts Uncover New Windows Backdoor Tied to DeathStalker Group Cybersecurity researchers announced on Thursday the discovery of an in-memory Windows backdoor, named “PowerPepper,” linked to a hacker-for-hire collective. This sophisticated malware is capable of executing malicious code remotely and extracting sensitive information from targets across Asia, Europe, and the…

Read MoreHackers-for-Hire Group Unveils New ‘PowerPepper’ In-Memory Malware

Attackers Leverage ScreenConnect and Microsoft 365 for Security Breaches

Barracuda’s latest cybersecurity report highlights a concerning rise in the unauthorized use of trusted tools, notably ScreenConnect, for remote access, coupled with a notable increase in Microsoft 365 login attempts from unfamiliar locations. The findings suggest that attackers are leveraging popular legitimate software and stolen credentials to infiltrate business networks…

Read MoreAttackers Leverage ScreenConnect and Microsoft 365 for Security Breaches

Masslogger Trojan Enhanced to Capture All Your Outlook and Chrome Credentials

New Phishing Campaign Targets Credentials Using MassLogger Malware A resurgence of the MassLogger malware has been detected, targeting credentials from major platforms including Microsoft Outlook, Google Chrome, and various instant messaging applications. This phishing campaign, primarily aimed at users in Turkey, Latvia, and Italy, began in mid-January and builds upon…

Read MoreMasslogger Trojan Enhanced to Capture All Your Outlook and Chrome Credentials

Iranian Hackers Employ Remote Utilities Software for Espionage Activities

Recent cybersecurity investigations have revealed that hackers believed to be affiliated with Iran are intensively targeting academic institutions, government bodies, and tourism organizations throughout the Middle East and its neighboring countries. This campaign appears to be focused on espionage and data theft. Trend Micro has named this operation “Earth Vetala,”…

Read MoreIranian Hackers Employ Remote Utilities Software for Espionage Activities

Utilize Microsoft’s One-Click Tool to Safeguard Against Exchange Attacks

On Monday, Microsoft announced the rollout of a new one-click mitigation software aimed at shielding susceptible environments from the ongoing ProxyLogon cyberattacks targeting Exchange Servers. This tool, known as the Exchange On-premises Mitigation Tool (EOMT), employs PowerShell to implement necessary countermeasures against known vulnerabilities, specifically CVE-2021-26855. It also conducts scans…

Read MoreUtilize Microsoft’s One-Click Tool to Safeguard Against Exchange Attacks

Hunting Unpatched Microsoft Exchange Servers: The Threat of Black Kingdom Ransomware

Following Microsoft’s recent release of a mitigation tool aimed at addressing cyberattacks targeting on-premises Exchange servers, the company reported that 92% of the internet-facing servers affected by the ProxyLogon vulnerabilities have been patched. This marks a substantial improvement of 43% from the previous week, closing a tumultuous period rife with…

Read MoreHunting Unpatched Microsoft Exchange Servers: The Threat of Black Kingdom Ransomware