The Exploit Post

Sign in Subscribe

Latest

Android Patches Qualcomm Vulnerabilities Exploited in Targeted Attacks

Android Patches Qualcomm Vulnerabilities Exploited in Targeted Attacks

Google has released the August 2025 Android security updates, addressing six vulnerabilities—two of which affect Qualcomm components and were actively exploited in targeted attacks. The exploited flaws, tracked as CVE-2025-21479 and CVE-2025-27038, were initially reported to the Android security team in January 2025. * CVE-2025-21479 – A graphics framework authorization flaw

PXA Stealer Stole 200,000 Passwords and 4 Million Cookies

PXA Stealer Stole 200,000 Passwords and 4 Million Cookies

Security analysts from Beazley Security and SentinelOne have uncovered a campaign distributing an updated version of PXA Stealer, a Python-based info-stealer. The malware has reportedly compromised more than 4,000 victims across 62 countries. Believed to be operated by Vietnamese-speaking hackers, PXA Stealer is monetized through Telegram, where the stolen

Cisco User Data Stolen from Cisco[.]com

Cisco User Data Stolen from Cisco[.]com

Cisco has confirmed that unknown attackers stole user data from Cisco[.]com in a vishing (voice phishing) attack that targeted one of its employees. The breach was first detected on July 24, 2025. According to Cisco’s internal investigation, the attacker gained unauthorized access to a third-party cloud-based customer relationship

Linux Backdoor "Plague" Evaded Detection for Over a Year

Linux Backdoor "Plague" Evaded Detection for Over a Year

Researchers at Nextron Systems have uncovered a sophisticated Linux backdoor, dubbed Plague, that managed to stay hidden for more than a year. The malware provides attackers with persistent SSH access and enables authentication bypass on compromised systems—without triggering alerts from traditional security tools. Plague masquerades as a malicious PAM

Android Trojan ‘PlayPraetor’ Infects Over 11,000 Devices

Android Trojan ‘PlayPraetor’ Infects Over 11,000 Devices

A newly discovered Android Trojan named PlayPraetor has infected more than 11,000 devices, according to security experts at Cleafy. The malware continues to spread rapidly, with an estimated 2,000 new infections reported each week. At present, the Trojan is targeting users in Portugal, Spain, France, Morocco, Peru, and

Anthropic Accuses OpenAI of Using Claude in GPT-5 Development

Anthropic Accuses OpenAI of Using Claude in GPT-5 Development

Anthropic has revoked OpenAI’s access to its Claude API, accusing the rival AI firm of violating its Terms of Service (ToS) by using Claude during the development of GPT-5. Key Allegations Anthropic claims that OpenAI broke its commercial usage rules, which prohibit: * Using Claude to develop competing AI models

AI-Generated npm Package Stole Cryptocurrency, Downloaded 1,500+ Times

AI-Generated npm Package Stole Cryptocurrency, Downloaded 1,500+ Times

Security researchers at Safety have uncovered a malicious npm package, likely AI-generated, that was designed to steal cryptocurrency wallet data from unsuspecting developers. Key Details * Package Name: @kodane/patch-manager (now removed from npm) * Disguise: Posed as a performance optimization tool, claiming to provide “advanced license validation and registry optimization for