The Exploit Post

Sign in Subscribe

Latest

150 Malicious Firefox Extensions Stole Over $1 Million from Users

150 Malicious Firefox Extensions Stole Over $1 Million from Users

Security analysts at Koi Security have uncovered a large-scale malicious campaign—dubbed "GreedyBear"—operating through the Mozilla Add-ons Store. The operation involved 150 malicious Firefox extensions that collectively stole more than $1 million in cryptocurrency from unsuspecting users. How the Scam Worked The extensions disguised themselves as legitimate

ReVault Vulnerabilities Bypass Windows Login on Dell Laptops

ReVault Vulnerabilities Bypass Windows Login on Dell Laptops

Firmware flaws in Dell ControlVault3 affect more than 100 Dell laptop models, enabling attackers to bypass Windows Login and install malware that can survive even after an operating system reinstall. What is Dell ControlVault? Dell ControlVault is a hardware-based security solution that stores passwords, biometric data, and security codes in

Adobe Releases Emergency Patches for AEM Forms

Adobe Releases Emergency Patches for AEM Forms

Adobe has released out-of-band security updates to address two critical vulnerabilities in Adobe Experience Manager (AEM) Forms (Java Enterprise Edition, JEE), both of which already have public proof-of-concept (PoC) exploits. The flaws—tracked as CVE-2025-54253 (CVSS score: 10.0, maximum severity) and CVE-2025-54254 (CVSS score: 8.6)—could allow attackers

WhatsApp Introduces New Feature to Protect Users from Scammers

WhatsApp Introduces New Feature to Protect Users from Scammers

WhatsApp has rolled out a new security feature designed to help users identify potential scammers when someone outside their contact list invites them to a group chat. The update introduces a "Safety Overview" warning that displays key details about the group—such as its creation date, total number

Google Data Breach Tied to Salesforce Hack by ShinyHunters Group

Google Data Breach Tied to Salesforce Hack by ShinyHunters Group

In an update to its June advisory, Google disclosed that it, too, fell victim to a similar attack. “In June, one of Google’s corporate Salesforce instances was compromised by UNC6040 activity,” the company stated. “The affected instance stored contact information and related notes about small and medium-sized businesses. Our

Vulnerabilities in Cursor AI Could Allow Arbitrary Code Execution

Vulnerabilities in Cursor AI Could Allow Arbitrary Code Execution

Several critical vulnerabilities have been patched in Cursor AI, a popular AI-powered code editor. The flaws allowed attackers to silently modify MCP (Model Context Protocol) configuration files and execute arbitrary code—without any user approval. 🔍 Key Findings CVE-2025-54136 ("MCPoison") — CVSS 7.2 Discovered by Check Point, this vulnerability

SonicWall Investigates 0-Day Vulnerability Amid Surge in Ransomware Attacks

SonicWall Investigates 0-Day Vulnerability Amid Surge in Ransomware Attacks

SonicWall has issued an urgent advisory to its customers, warning them to disable SSL VPN services on 7th-generation firewalls amid a wave of ransomware attacks potentially exploiting a zero-day vulnerability. Key Details According to Arctic Wolf researchers, multiple attacks involving Akira ransomware have been observed since July 15, 2025. These