The Exploit Post

Sign in Subscribe

Latest

Checkout Refuses Ransom Demand, Will Donate to Cybercrime Research Instead

Checkout Refuses Ransom Demand, Will Donate to Cybercrime Research Instead

British fintech giant Checkout.com—payment processor for eBay, Uber Eats, IKEA, Samsung, and dozens of major brands—became the latest victim of ShinyHunters hackers. The company refused to pay the ransom and announced plans to donate the demanded amount to cybersecurity research. The Breach Checkout.com provides unified payment

Microsoft Disables KMS38 Activation Method After Years of Unofficial Use

Microsoft Disables KMS38 Activation Method After Years of Unofficial Use

Microsoft has quietly eliminated the KMS38 activation method, an unofficial technique used for years to activate Windows 10 and 11 without purchasing licenses. The changes, implemented through recent Windows updates, received no mention in official release notes or security bulletins. Users first noticed the disruption last week when the KMS38

Asus Issues Emergency Patch for Authentication Bypass in DSL Router Series

Asus Issues Emergency Patch for Authentication Bypass in DSL Router Series

Asus has released emergency firmware updates addressing a critical authentication bypass vulnerability in several DSL-series router models. The flaw, tracked as CVE-2025-59367, allows remote attackers to gain full administrative control of vulnerable devices without requiring any credentials or user interaction. The affected router models—DSL-AC51, DSL-N16, and DSL-AC750—remain vulnerable

Logitech Confirms Data Breach Following Clop Ransomware Attack

Logitech Confirms Data Breach Following Clop Ransomware Attack

Logitech has filed formal breach notification documents with the U.S. Securities and Exchange Commission (SEC), confirming that threat actors stole company data through a third-party software vulnerability. The Clop ransomware group claimed responsibility for the attack and published approximately 1.8 terabytes of data allegedly stolen from the Swiss-American

Remote Code Execution Flaw in ImunifyAV Puts Millions of Websites at Risk

Remote Code Execution Flaw in ImunifyAV Puts Millions of Websites at Risk

A remote code execution (RCE) vulnerability in ImunifyAV, a malware scanner deployed across Linux hosting environments, creates significant exposure for tens of millions of websites. The flaw enables attackers to compromise the underlying host system through malicious file uploads. What ImunifyAV Is and Why This Matters ImunifyAV functions as a

Anthropic: Chinese Hackers Used Claude Code for Cyber Espionage

Anthropic: Chinese Hackers Used Claude Code for Cyber Espionage

Chinese hackers used Anthropic's AI tool Claude Code to attack 30 major companies and government organizations. According to Anthropic, the threat actors successfully breached several targets. The Campaign A new report from Anthropic reveals that the malicious campaign unfolded in mid-September 2025, targeting major technology companies, financial institutions,

The IndonesianFoods Worm Has Created Over 100,000 Malicious Packages in npm

The IndonesianFoods Worm Has Created Over 100,000 Malicious Packages in npm

A self-propagating worm called IndonesianFoods has infected npm, spawning new packages every seven seconds. According to Sonatype security researchers, the malware has already created over 100,000 packages, and the number continues to grow. The Worm's Naming Scheme The worm's name references its package naming pattern,