The Exploit Post

Sign in Subscribe

Latest

Austrian Researchers Collected Personal Data of 3.5 Billion WhatsApp Users

Austrian Researchers Collected Personal Data of 3.5 Billion WhatsApp Users

Researchers from the University of Vienna announced that they discovered a vulnerability in WhatsApp that allowed them to collect data on more than 3.5 billion users. In their assessment, this could represent the largest data leak in history. Exploitation Methodology The report's authors note that WhatsApp allows

Malicious Actors Exploit RCE Vulnerability in 7-Zip

Malicious Actors Exploit RCE Vulnerability in 7-Zip

NHS England Digital is warning about active exploitation of vulnerability CVE-2025-11001 in the 7-Zip archiver. Users are urged to update to version 25.00, released in July 2025. Vulnerability Details CVE-2025-11001 (CVSS score: 7.0) involves improper handling of symbolic links in ZIP files. A specially crafted archive can force

Hackers Deface Website of DPI Technology Provider Protei and Claim Leak of 182 GB of Data

Hackers Deface Website of DPI Technology Provider Protei and Claim Leak of 182 GB of Data

An unknown hacker group claims to have breached the servers of telecommunications company Protei and stolen approximately 182 gigabytes of data, including several years of email correspondence. The attackers, whose motives remain unclear, also defaced the company's website with a profane message. Company Background Per TechCrunch reporting, Protei

Approximately 50,000 Asus Routers Compromised in WrtHug Campaign

Approximately 50,000 Asus Routers Compromised in WrtHug Campaign

Researchers at SecurityScorecard have uncovered a large-scale malicious campaign called WrtHug, which has compromised approximately 50,000 Asus routers worldwide. Attackers are exploiting six known vulnerabilities, primarily targeting older models from the AC and AX series. Geographic Distribution and Attribution The majority of infected devices are located in Taiwan, with

Google Chrome Patches Zero-Day Vulnerability Already Exploited by Hackers

Google Chrome Patches Zero-Day Vulnerability Already Exploited by Hackers

Google has released an emergency patch for Chrome, fixing zero-day vulnerability CVE-2025-13223. This marks the seventh zero-day vulnerability exploited in real-world attacks and patched in the browser this year. The patched issue involves a type confusion error in the V8 JavaScript engine and WebAssembly. Clement Lecigne from Google's

Global Cloudflare Outage Caused by Configuration Error, Not Attack

Global Cloudflare Outage Caused by Configuration Error, Not Attack

Cloudflare CEO Matthew Prince has explained the cause of the massive outage that disrupted the company's global network and numerous websites on November 18, 2025. A database permission configuration error triggered the incident, though the company initially suspected a large-scale DDoS attack. Prince wrote that the problem occurred

RondoDox Botnet Exploits XWiki Vulnerability to Compromise Servers

RondoDox Botnet Exploits XWiki Vulnerability to Compromise Servers

Security researchers are warning about a new attack wave from the RondoDox botnet exploiting a critical remote code execution vulnerability in XWiki Platform (CVE-2025-24893). CISA has already added the flaw to its catalog of actively exploited vulnerabilities, with exploitation attempts increasing since early November. RondoDox first appeared on researchers'

Malicious npm Packages Abuse Adspect Redirects

Malicious npm Packages Abuse Adspect Redirects

Researchers at Socket have discovered seven malicious packages in npm that exploit the Adspect cloud service to mask their activity while redirecting victims to cryptocurrency scam websites. Adspect markets itself as a tool for protecting websites from bots. However, this campaign demonstrates the service can serve the opposite purpose—concealing

Dutch Police Confiscate 250 Servers from "Bulletproof" Hosting Provider

Dutch Police Confiscate 250 Servers from "Bulletproof" Hosting Provider

Dutch police have executed a large-scale operation against an unnamed "bulletproof" hosting provider, seizing approximately 250 physical servers from data centers in The Hague and Zoetermeer. The seizure caused thousands of virtual servers to go offline simultaneously. Media sources indicate the operation likely targeted the hosting service CrazyRDP.

Azure Withstands 15.72 Tbps DDoS Attack From Half-Million Compromised Devices

Azure Withstands 15.72 Tbps DDoS Attack From Half-Million Compromised Devices

Microsoft's Azure cloud platform absorbed a massive distributed denial-of-service attack from the Aisuru botnet, peaking at 15.72 terabits per second with traffic originating simultaneously from 500,000 IP addresses. The Attack The assault targeted a specific Azure public IP address in Australia using UDP flooding techniques. Attack

(Untitled)

(Untitled)

Keenetic router users discovered their devices automatically installed new firmware—even with auto-update disabled—after the manufacturer detected active exploitation of a critical authentication vulnerability. The Vulnerability In early November, Keenetic published security bulletin KEN-PSA-2025-WP01 describing a CWE-521 vulnerability (Weak Password Requirements) with a CVSS score of 8.8. The

Google Retreats on Android App Verification After Developer Backlash

Google Retreats on Android App Verification After Developer Backlash

Google reversed course on mandatory developer verification for sideloaded Android apps, announcing simplified accounts for small developers and an "advanced mode" for experienced users following community outcry over the restrictive policy. The Original Plan In August 2025, Google announced a Developer Verification system scheduled for 2026 rollout. The

Fortinet Discloses Critical FortiWeb Zero-Day After Weeks of Active Exploitation

Fortinet Discloses Critical FortiWeb Zero-Day After Weeks of Active Exploitation

Fortinet acknowledged a critical authentication bypass vulnerability in FortiWeb firewalls only after security researchers published proof-of-concept exploits—nearly six weeks after attacks began and three weeks after the company quietly patched the flaw. Timeline of Disclosure Failure The vulnerability's exploitation timeline reveals a problematic gap between patch availability

Security Experts Challenge Anthropic's Claims About AI-Powered Cyber Espionage Campaign

Security Experts Challenge Anthropic's Claims About AI-Powered Cyber Espionage Campaign

The Claims Last week, Anthropic published a report asserting that Chinese threat actor GTG-1002 conducted a large-scale cyber-espionage operation with unprecedented AI automation. According to the company, hackers targeted 30 organizations across technology, finance, chemical manufacturing, and government sectors in September 2025, successfully compromising several victims. The report described what