The Exploit Post

Sign in Subscribe

Red Dog Security

Linux Backdoor "Plague" Evaded Detection for Over a Year

Linux Backdoor "Plague" Evaded Detection for Over a Year

Researchers at Nextron Systems have uncovered a sophisticated Linux backdoor, dubbed Plague, that managed to stay hidden for more than a year. The malware provides attackers with persistent SSH access and enables authentication bypass on compromised systems—without triggering alerts from traditional security tools. Plague masquerades as a malicious PAM

Android Trojan ‘PlayPraetor’ Infects Over 11,000 Devices

Android Trojan ‘PlayPraetor’ Infects Over 11,000 Devices

A newly discovered Android Trojan named PlayPraetor has infected more than 11,000 devices, according to security experts at Cleafy. The malware continues to spread rapidly, with an estimated 2,000 new infections reported each week. At present, the Trojan is targeting users in Portugal, Spain, France, Morocco, Peru, and

Anthropic Accuses OpenAI of Using Claude in GPT-5 Development

Anthropic Accuses OpenAI of Using Claude in GPT-5 Development

Anthropic has revoked OpenAI’s access to its Claude API, accusing the rival AI firm of violating its Terms of Service (ToS) by using Claude during the development of GPT-5. Key Allegations Anthropic claims that OpenAI broke its commercial usage rules, which prohibit: * Using Claude to develop competing AI models

AI-Generated npm Package Stole Cryptocurrency, Downloaded 1,500+ Times

AI-Generated npm Package Stole Cryptocurrency, Downloaded 1,500+ Times

Security researchers at Safety have uncovered a malicious npm package, likely AI-generated, that was designed to steal cryptocurrency wallet data from unsuspecting developers. Key Details * Package Name: @kodane/patch-manager (now removed from npm) * Disguise: Posed as a performance optimization tool, claiming to provide “advanced license validation and registry optimization for

Google Tool Allowed Removal of Pages from Search Results

Google Tool Allowed Removal of Pages from Search Results

Investigators have uncovered a vulnerability in Google’s "Refresh Outdated Content" tool that allowed unauthorized removal of search result entries—allegedly exploited to suppress negative reporting about the CEO of a major San Francisco tech company. How It Happened The flaw came to light following reports by journalist

Pi-hole Suffers Data Leak Due to WordPress Plugin Vulnerability

Pi-hole Suffers Data Leak Due to WordPress Plugin Vulnerability

The developers behind Pi-hole, the widely used DNS-level ad blocker, have disclosed a data leak exposing the names and email addresses of thousands of donors. The breach stemmed from a vulnerability in the GiveWP WordPress plugin used on their donation page. What Happened? Pi-hole, originally designed for Raspberry Pi devices,

Mozilla Warns Extension Developers About Phishing Attacks

Mozilla Warns Extension Developers About Phishing Attacks

Mozilla has issued an urgent warning to browser extension developers about an ongoing phishing campaign targeting accounts on the official addons.mozilla.org (AMO) platform. AMO hosts more than 60,000 extensions and 500,000 themes, serving millions of users around the world. How the Attack Works The phishing scheme