The Exploit Post

Sign in Subscribe

Latest

Fresh Bug Used to Deploy Rootkits on Cisco Devices

Fresh Bug Used to Deploy Rootkits on Cisco Devices

Trend Micro researchers have discovered a new malicious campaign targeting unpatched Cisco devices, using a recently fixed zero-day vulnerability to deploy rootkits that hide deep within network firmware. The flaw, CVE-2025-20352 (CVSS 7.7), affects all supported versions of Cisco IOS and IOS XE, the operating systems powering much of

North Korean Hackers Employ EtherHiding Tactic to Conceal Malware in the Blockchain

North Korean Hackers Employ EtherHiding Tactic to Conceal Malware in the Blockchain

Google’s Threat Intelligence Group (GTIG) has uncovered a new North Korean cyber campaign that hides malware within blockchain smart contracts — a sophisticated evasion method known as EtherHiding. According to GTIG, the group UNC5342 has used this technique since February 2025 in “Contagious Interview” operations aimed at stealing cryptocurrency from

Astaroth Banker Uses GitHub to Evade Blocking

Astaroth Banker Uses GitHub to Evade Blocking

McAfee Labs has uncovered a new campaign distributing the Astaroth banking trojan, which now leverages GitHub as part of its command infrastructure to evade takedowns and remain operational even when its servers are blocked. “Instead of relying solely on traditional command-and-control (C2) servers, which can be shut down, the attackers

Discord Contractor Denies Role in Data Leak

Discord Contractor Denies Role in Data Leak

5CA, a contractor providing customer support services to Discord, has denied responsibility for the recent data breach that exposed user identification documents and partial payment information. Earlier this month, Discord confirmed a cyber incident linked to the compromise of a third-party vendor’s systems on September 20, 2025. The company

Slop Is Served! An Editor’s Column

Slop Is Served! An Editor’s Column

A new phrase has joined the digital dictionary: “AI slop.” It’s the label people slap on the sloppy, off-putting results of neural networks the distorted hands, the uncanny smiles, the soulless text. The word has become shorthand for everything people hate about generative AI. But since slop seems unavoidable,

Librarian Likho Develops Its Own Malware with AI Assistance

Librarian Likho Develops Its Own Malware with AI Assistance

Kaspersky Lab has detected a new wave of targeted cyberattacks by the Librarian Likho group—previously known as Librarian Ghouls—against organizations in Russia’s aviation and radio industries. For the first time, the threat actors are using custom-built malware to steal confidential information malware that researchers say was developed

Symantec: Chinese Hack Group ‘Jewelbug’ Breached Russian IT Services Provider

Symantec: Chinese Hack Group ‘Jewelbug’ Breached Russian IT Services Provider

A China-linked cyber-espionage group known as Jewelbug infiltrated the network of a Russian IT services provider, maintaining access for nearly five months, according to a report by the Symantec Threat Hunter Team. The breach marks the first time the group has been observed operating outside Southeast Asia and South America,