The Exploit Post

Sign in Subscribe

Latest

A Vulnerability in Tunnelblick Could Be Exploited Even After Its Removal

A Vulnerability in Tunnelblick Could Be Exploited Even After Its Removal

Yegor Filatov, a specialist at Positive Technologies, has discovered and helped remediate a serious vulnerability in Tunnelblick, a graphical interface for working with OpenVPN. The flaw allowed privilege escalation on macOS systems and the potential for data theft. What made the issue especially dangerous was that it could still be

U.S. Authorities Seize $2.8 Million in Cryptocurrency from Zeppelin Ransomware Operator

U.S. Authorities Seize $2.8 Million in Cryptocurrency from Zeppelin Ransomware Operator

The U.S. Department of Justice (DOJ) has seized more than $2.8 million in cryptocurrency from Yannis Aleksandrovich Antropenko, the alleged operator of the Zeppelin ransomware. Antropenko faces charges in Texas for computer fraud and money laundering. He is accused of operating Zeppelin, a now-defunct ransomware strain active between

A New Wave of Cyberattacks by the PhantomCore Hacker Group Detected

A New Wave of Cyberattacks by the PhantomCore Hacker Group Detected

Between May and July 2025, specialists at Positive Technologies uncovered more than 180 compromised systems within Russian organizations. The malicious activity was traced back to the hacker group PhantomCore, which appears to have focused exclusively on targeting Russia’s critical infrastructure. Who Was Targeted The victims spanned a wide range

TETRA:BURST and 2TETRA:2BURST — Why Critical Radio Systems Remain Vulnerable

TETRA:BURST and 2TETRA:2BURST — Why Critical Radio Systems Remain Vulnerable

In 2023, researchers dropped a bombshell on the world of secure communications. They revealed TETRA:BURST, a set of vulnerabilities in the Terrestrial Trunked Radio (TETRA) standard — the digital radio system used by law enforcement, the military, and operators of critical infrastructure in more than 100 countries. The flaws meant

Backdoor PipeMagic Resurfaces, Exploiting New Vulnerabilities

Backdoor PipeMagic Resurfaces, Exploiting New Vulnerabilities

Experts from Kaspersky and BI.ZONE are warning about renewed activity linked to the PipeMagic backdoor. Kaspersky highlights the malware’s evolution and the shifting tactics of its operators, while BI.ZONE has published a technical analysis of the latest flaw exploited in attacks—CVE-2025-29824. A Persistent Threat Since 2022

Phishers Use the Symbol «ん» to Deceive Users

Phishers Use the Symbol «ん» to Deceive Users

Cybercriminals are exploiting the Unicode character «ん» from the Japanese hiragana script to disguise phishing links as legitimate. In certain systems and fonts, this character can resemble a forward slash, tricking users into believing a malicious URL is authentic. Homoglyph Tricks in Action This technique is part of a broader

Mozilla Warns: Ad Blockers Could Become Illegal in Germany

Mozilla Warns: Ad Blockers Could Become Illegal in Germany

Mozilla representatives report that a recent ruling by Germany's Federal Court of Justice (BGH) has reignited an old legal dispute over whether browser-based ad blockers violate copyright law. The organization warns this development could eventually lead to a ban on such tools in the country. The Legal Battle