The Exploit Post

Sign in Subscribe

Red Dog Security

60 Malicious Packages Found in RubyGems, Downloaded 275,000 Times

60 Malicious Packages Found in RubyGems, Downloaded 275,000 Times

Security researchers have uncovered 60 malicious packages on RubyGems, the package manager for the Ruby programming language. Disguised as harmless automation tools for social media, blogs, and messaging platforms, the gems stole user credentials and, since March 2023, have been downloaded more than 275,000 times. Experts at Socket, who

Paper Werewolf Exploits WinRAR Vulnerabilities in Espionage Campaigns

Paper Werewolf Exploits WinRAR Vulnerabilities in Espionage Campaigns

In July and early August 2025, the espionage-focused hacking group Paper Werewolf targeted multiple organizations in Russia and Uzbekistan. The campaign relied on phishing emails containing RAR archives that appeared to hold important documents but instead carried malware. The attackers exploited two vulnerabilities in WinRAR that allowed malicious software to

Daily CVE report with the latest security vulnerabilities and exploits. Stay informed with real-time updates and expert insights on emerging cyber threats.

Daily CVE report with the latest security vulnerabilities and exploits. Stay informed with real-time updates and expert insights on emerging cyber threats.

CVE-2025-8022 Rejected This CVE has been marked Rejected in the CVE List. These CVEs are stored in the NVD, but do not show up in search results by default. NVD Published Date: 07/23/2025 NVD Last Modified: 08/11/2025 Description Rejected reason: Bun Shell does not invoke /bin/

SonicWall Denies 0-Day Exploit, Links Recent Attacks to 2024 Vulnerability

SonicWall Denies 0-Day Exploit, Links Recent Attacks to 2024 Vulnerability

SonicWall has confirmed that recent attacks targeting its 7th-generation firewalls with SSL VPN enabled were the work of the Akira ransomware group exploiting an old vulnerability—CVE-2024-40766—rather than a suspected zero-day. Key Findings Following an investigation into 40 incidents, SonicWall determined that attackers leveraged CVE-2024-40766, a critical SSL VPN

150 Malicious Firefox Extensions Stole Over $1 Million from Users

150 Malicious Firefox Extensions Stole Over $1 Million from Users

Security analysts at Koi Security have uncovered a large-scale malicious campaign—dubbed "GreedyBear"—operating through the Mozilla Add-ons Store. The operation involved 150 malicious Firefox extensions that collectively stole more than $1 million in cryptocurrency from unsuspecting users. How the Scam Worked The extensions disguised themselves as legitimate

ReVault Vulnerabilities Bypass Windows Login on Dell Laptops

ReVault Vulnerabilities Bypass Windows Login on Dell Laptops

Firmware flaws in Dell ControlVault3 affect more than 100 Dell laptop models, enabling attackers to bypass Windows Login and install malware that can survive even after an operating system reinstall. What is Dell ControlVault? Dell ControlVault is a hardware-based security solution that stores passwords, biometric data, and security codes in

Adobe Releases Emergency Patches for AEM Forms

Adobe Releases Emergency Patches for AEM Forms

Adobe has released out-of-band security updates to address two critical vulnerabilities in Adobe Experience Manager (AEM) Forms (Java Enterprise Edition, JEE), both of which already have public proof-of-concept (PoC) exploits. The flaws—tracked as CVE-2025-54253 (CVSS score: 10.0, maximum severity) and CVE-2025-54254 (CVSS score: 8.6)—could allow attackers