The Exploit Post

Sign in Subscribe

News

News

Fastwel Patches Critical PLC Vulnerabilities That Allowed Code Execution

Fastwel Patches Critical PLC Vulnerabilities That Allowed Code Execution

Russian industrial equipment manufacturer Fastwel has released security updates for two programmable logic controller (PLC) models, addressing nine serious vulnerabilities that could allow attackers to execute arbitrary code and take complete control of the devices. The vulnerabilities affect Fastwel's CPM723-01 and CPM810-03 controllers, which are widely deployed across

The Herodotus Trojan: Banking Malware That Types Like a Human to Beat Detection

The Herodotus Trojan: Banking Malware That Types Like a Human to Beat Detection

A new banking Trojan called Herodotus has emerged in Italy and Brazil, and it brings something we haven't seen before in Android malware: the ability to mimic human typing patterns to fool behavioral analysis systems. ThreatFabric researchers first spotted Herodotus advertised on hacker forums on September 7, 2025,

Atroposia MaaS Platform Offers Subscription-Based RAT with Integrated Vulnerability Scanner

Atroposia MaaS Platform Offers Subscription-Based RAT with Integrated Vulnerability Scanner

A new Malware-as-a-Service platform is democratizing sophisticated cyberattacks by offering a feature-rich remote access trojan for just $200 per month, complete with built-in vulnerability scanning capabilities that enable attackers to identify and exploit weaknesses across enterprise networks. Varonis Threat Labs researchers have uncovered Atroposia, a subscription-based malware platform that packages

PhantomRaven Campaign: Attackers Exploit npm Vulnerability to Deploy 126 Malicious Packages with 86,000+ Downloads

PhantomRaven Campaign: Attackers Exploit npm Vulnerability to Deploy 126 Malicious Packages with 86,000+ Downloads

A sophisticated supply chain attack has compromised the npm ecosystem, with threat actors uploading over 100 malicious packages that exploit an obscure feature to bypass security detection and steal developer credentials. Koi Security researchers have uncovered the PhantomRaven campaign, active since August 2024, which has successfully delivered infostealers through 126

BlueNoroff Leverages AI to Target Blockchain Executives in Sophisticated Social Engineering Campaigns

BlueNoroff Leverages AI to Target Blockchain Executives in Sophisticated Social Engineering Campaigns

North Korean-linked threat actors are deploying artificial intelligence to enhance cryptocurrency theft operations, using deepfake video calls and AI-generated phishing content to compromise blockchain industry leaders, according to new research from Kaspersky Lab. Kaspersky's Global Research and Analysis Team (GReAT) has identified two interconnected campaigns—GhostCall and GhostHire—

Critical Vulnerability in ChatGPT Desktop App Enables Memory Poisoning Attacks

Critical Vulnerability in ChatGPT Desktop App Enables Memory Poisoning Attacks

Security researchers have uncovered a serious flaw in OpenAI's ChatGPT desktop application that allows attackers to inject malicious instructions into the AI assistant's persistent memory, potentially leading to account compromise and unauthorized code execution. LayerX security researchers disclosed the vulnerability, which affects the recently released ChatGPT

Cloud Atlas APT Group Intensifies Attacks on Russian Agricultural and Defense Sectors

Cloud Atlas APT Group Intensifies Attacks on Russian Agricultural and Defense Sectors

Cybersecurity researchers have uncovered a sophisticated campaign by the Cloud Atlas threat group targeting Russian enterprises through meticulously crafted phishing emails disguised as legitimate agricultural forum invitations. F6 Security specialists reported a notable surge in Cloud Atlas activity throughout 2025, with the advanced persistent threat (APT) group focusing its efforts