The Exploit Post

Sign in Subscribe

Latest

PhantomRaven Campaign: Attackers Exploit npm Vulnerability to Deploy 126 Malicious Packages with 86,000+ Downloads

PhantomRaven Campaign: Attackers Exploit npm Vulnerability to Deploy 126 Malicious Packages with 86,000+ Downloads

A sophisticated supply chain attack has compromised the npm ecosystem, with threat actors uploading over 100 malicious packages that exploit an obscure feature to bypass security detection and steal developer credentials. Koi Security researchers have uncovered the PhantomRaven campaign, active since August 2024, which has successfully delivered infostealers through 126

BlueNoroff Leverages AI to Target Blockchain Executives in Sophisticated Social Engineering Campaigns

BlueNoroff Leverages AI to Target Blockchain Executives in Sophisticated Social Engineering Campaigns

North Korean-linked threat actors are deploying artificial intelligence to enhance cryptocurrency theft operations, using deepfake video calls and AI-generated phishing content to compromise blockchain industry leaders, according to new research from Kaspersky Lab. Kaspersky's Global Research and Analysis Team (GReAT) has identified two interconnected campaigns—GhostCall and GhostHire—

Critical Vulnerability in ChatGPT Desktop App Enables Memory Poisoning Attacks

Critical Vulnerability in ChatGPT Desktop App Enables Memory Poisoning Attacks

Security researchers have uncovered a serious flaw in OpenAI's ChatGPT desktop application that allows attackers to inject malicious instructions into the AI assistant's persistent memory, potentially leading to account compromise and unauthorized code execution. LayerX security researchers disclosed the vulnerability, which affects the recently released ChatGPT

Cloud Atlas APT Group Intensifies Attacks on Russian Agricultural and Defense Sectors

Cloud Atlas APT Group Intensifies Attacks on Russian Agricultural and Defense Sectors

Cybersecurity researchers have uncovered a sophisticated campaign by the Cloud Atlas threat group targeting Russian enterprises through meticulously crafted phishing emails disguised as legitimate agricultural forum invitations. F6 Security specialists reported a notable surge in Cloud Atlas activity throughout 2025, with the advanced persistent threat (APT) group focusing its efforts

Ransomware Payments Drop to Historic Low as Victims Refuse to Pay

Ransomware Payments Drop to Historic Low as Victims Refuse to Pay

Only 23% of ransomware victims agreed to pay extortionists in the third quarter of 2025, marking a historic low in ransom payment rates, according to cybersecurity firm Coveware. The decline represents a continuation of a six-year trend: fewer organizations are negotiating with or paying ransomware operators. For comparison, 28% of

Russian IT Association Proposes Criminal Penalties for Pirated Software

Russian IT Association Proposes Criminal Penalties for Pirated Software

The executive director of Russia's Association of Computer and Information Technology Enterprises (APKIT) has proposed introducing criminal liability for using pirated software, sparking immediate controversy within the country's tech sector. Nikolai Komlev announced the initiative on October 27, 2025, at a meeting of the digitalization working

Google Explains That There Was No Leak of 183 Million Gmail Accounts

Google Explains That There Was No Leak of 183 Million Gmail Accounts

For the second time in recent months, Google has been forced to debunk reports of a massive Gmail breach. The latest claims about "183 million compromised accounts" spread rapidly online despite no breach or incident involving Google's servers. Old Data, Not a New Breach Company representatives