The Exploit Post

Sign in Subscribe

Latest

Akira Ransomware Campaign Against SonicWall Devices Bypasses MFA Protections

Akira Ransomware Campaign Against SonicWall Devices Bypasses MFA Protections

Experts from Arctic Wolf warn that the Akira ransomware group continues to refine its attacks on SonicWall SSL VPN devices. Alarmingly, hackers are successfully logging into accounts even when multi-factor authentication (MFA) with one-time passwords (OTP) is enabled. Researchers suspect that previously stolen OTP seed keys may be in use,

Fresh 0-day in GoAnywhere MFT (CVE-2025-10035) Is Being Actively Exploited

Fresh 0-day in GoAnywhere MFT (CVE-2025-10035) Is Being Actively Exploited

Security researchers warn that attackers are actively exploiting a critical vulnerability, CVE-2025-10035, in Fortra’s GoAnywhere MFT. The flaw, disclosed in mid-September 2025, permits remote command execution without authentication and is already being used in real attacks. What GoAnywhere MFT does — and why this matters GoAnywhere MFT is a managed

New XCSSET Malware Variant Targets macOS Xcode Developers

New XCSSET Malware Variant Targets macOS Xcode Developers

Microsoft Threat Intelligence specialists have identified a new variant of the XCSSET malware for macOS. This version introduces features for monitoring the system clipboard to intercept cryptocurrency transactions and employs new persistence methods to maintain a foothold on infected devices. Background on XCSSET XCSSET is modular malware designed for macOS

Microsoft Edge Will Block Malicious Third-Party Extensions

Microsoft Edge Will Block Malicious Third-Party Extensions

Microsoft has announced a new security feature for its Edge browser that will block malicious extensions installed outside the official store. Sideloading: A Security Loophole In Edge, developers can install extensions locally—known as sideloading—to test them before submitting to the official Microsoft Edge Add-ons store. This requires enabling

Hackers Deploy Brickstorm Malware Against U.S. Technology and Legal Organizations

Hackers Deploy Brickstorm Malware Against U.S. Technology and Legal Organizations

Google specialists report that suspected Chinese hackers have used the Brickstorm malware in espionage operations targeting American organizations in the technology and legal sectors. The attackers remained hidden in victim networks for roughly 400 days before being discovered. The Malware: Brickstorm Brickstorm is a backdoor written in Go, first observed

PyPI Users Warned Again About Phishing Attacks

PyPI Users Warned Again About Phishing Attacks

The Python Software Foundation (PSF) has issued a fresh warning about an ongoing phishing campaign targeting developers who use the Python Package Index (PyPI). Attackers are impersonating PyPI with a look-alike domain to steal login credentials. Recurring Campaign This latest wave continues a series of attacks first observed in July

Two Malicious Packages Found in Rust Crates.io Repository

Two Malicious Packages Found in Rust Crates.io Repository

Two malicious packages with a combined total of roughly 8,500 downloads have been discovered in the official Rust repository. The malware scanned developers’ systems to steal private cryptocurrency keys and other sensitive data. Discovery and Impact Rust packages, known as crates, are distributed through Crates.io—the equivalent of