The Exploit Post

Sign in Subscribe

Latest

Three Critical Vulnerabilities in runC Enable Docker Container Escapes

Three Critical Vulnerabilities in runC Enable Docker Container Escapes

Security researchers have identified three serious vulnerabilities in runC, the container runtime that powers Docker and Kubernetes. These flaws allow attackers to break out of container isolation and gain root access to the host system. SUSE engineer Aleksa Sarai, who also serves on the Open Container Initiative (OCI) board, reported

Spyware LandFall Attacked Samsung Devices via WhatsApp Messages

Spyware LandFall Attacked Samsung Devices via WhatsApp Messages

Researchers from Palo Alto Networks have discovered previously unknown spyware called LandFall that exploited a zero-day vulnerability in Samsung devices. The attacks started in at least July 2024, with hackers distributing the malware through malicious images sent via WhatsApp. The Target and the Vulnerability The attackers targeted specific users of

US Congressional Budget Office Hit by Cyberattack

US Congressional Budget Office Hit by Cyberattack

The US Congressional Budget Office (CBO) has suffered a cyberattack that may have exposed sensitive government information used to shape national policy and spending decisions. What the CBO Does The CBO employs approximately 275 people who provide lawmakers with cost estimates and analysis for preparing the national budget. The agency

Malicious NuGet Packages Contain Delayed-Action Logic Bombs

Malicious NuGet Packages Contain Delayed-Action Logic Bombs

Security researchers from Socket have discovered nine malicious packages in the NuGet repository containing code designed to activate years in the future. These "logic bombs" are programmed to trigger between August 2027 and November 2028, targeting databases and Siemens programmable logic controllers (PLCs). The Infected Packages All nine

GlassWorm Malware Breaches OpenVSX Again

GlassWorm Malware Breaches OpenVSX Again

The hackers operating GlassWorm malware have breached OpenVSX for a second time, uploading three malicious Visual Studio Code extensions. This happened despite security improvements the platform implemented after the first attack. The infected extensions accumulated over 10,000 downloads before detection. Background: The October 2025 Discovery Security researchers first identified

40 Million Downloads: How Malicious Apps Flooded Google Play in One Year

40 Million Downloads: How Malicious Apps Flooded Google Play in One Year

Google Play hosted 239 malicious applications over the past year. Users downloaded them more than 42 million times. Zscaler, a cybersecurity firm, tracked these threats between June 2024 and May 2025. Their findings show attacks on mobile devices increased 67% year-over-year. The primary threats: banking trojans, spyware, and adware. Why

The Whistler Who Hacked the World: The Joseph Engressia Story

The Whistler Who Hacked the World: The Joseph Engressia Story

Joseph Engressia could make free phone calls to anywhere on Earth with nothing but his voice. No tools, no equipment—just a whistle at precisely 2600 Hz. This is his story. The Discovery Engressia was born blind. Like many people with congenital blindness, he developed exceptional hearing and musical ability