The Exploit Post

Sign in Subscribe

Red Dog Security

F6 Experts Investigate Kinsing Group’s Attacks on Russian Companies

F6 Experts Investigate Kinsing Group’s Attacks on Russian Companies

In Q2 2025, researchers identified a wave of cyberattacks targeting Russian companies in the finance, logistics, and telecom sectors. The activity was linked to the Kinsing hacking group—also known as H2Miner and Resourceful Wolf—whose primary objective was to infect victim systems with Kinsing malware and deploy XMRig for

Gemini Could Leak User Data Through Google Calendar

Gemini Could Leak User Data Through Google Calendar

Google has patched a vulnerability that allowed malicious Google Calendar invitations to remotely control Gemini agents running on a victim’s device and exfiltrate sensitive data. Gemini is Google’s large language model (LLM), integrated into Android, Google web services, and Google Workspace applications, with direct access to Gmail, Calendar,

Lenovo Webcams Could Be Weaponized in BadUSB-Style Attacks

Lenovo Webcams Could Be Weaponized in BadUSB-Style Attacks

Security researchers at Eclypsium have demonstrated a novel attack dubbed “BadCam” at DEF CON 33, revealing vulnerabilities in certain Lenovo webcam models that can be remotely repurposed as BadUSB attack tools. Key Details of the BadCam Attack (CVE-2025-4371) * First real-world demonstration of remotely hijacking Linux-based USB peripherals for malicious purposes.

Dozens of Docker Hub Images Still Infected with xz Utils Backdoor

Dozens of Docker Hub Images Still Infected with xz Utils Backdoor

Security analysts at Binarly have identified at least 35 Docker Hub images still infected with the backdoor that compromised xz Utils last year. Researchers warn this poses a serious supply chain risk to users, organizations, and their data. Supply Chain Risk in CI/CD Pipelines Many CI/CD pipelines, developers,

Android Backdoor Disguised as Antivirus Targets Russian Businesses

Android Backdoor Disguised as Antivirus Targets Russian Businesses

Researchers at Dr. Web have uncovered a sophisticated Android backdoor targeting Russian business representatives. The malware offers extensive surveillance and data theft capabilities, including: * Recording conversations * Streaming live camera footage * Stealing data from messengers and browsers * Keylogging Malware Evolution and Targeting Dubbed Android.Backdoor.916.origin, the Kotlin-based malware first

Daily CVE report with the latest security vulnerabilities and exploits. Stay informed with real-time updates and expert insights on emerging cyber threats.

Vulnerability Details : CVE-2025-8088 Path traversal vulnerability in WinRAR A path traversal vulnerability affecting the Windows version of WinRAR allows the attackers to execute arbitrary code by crafting malicious archive files. This vulnerability was exploited in the wild and was discovered by Anton Cherepanov, Peter Košinár, and Peter Strý?ek from

Over 29,000 Exchange Servers Still Vulnerable to Critical Flaw

Over 29,000 Exchange Servers Still Vulnerable to Critical Flaw

More than 29,000 Microsoft Exchange servers remain unpatched against CVE-2025-53786, a severe security flaw that could allow attackers to move laterally into Microsoft cloud environments and potentially achieve full domain compromise. How the Vulnerability Works The flaw allows attackers with administrative access to on-premises Exchange servers to escalate privileges