ShadowSilk Data Exfiltration Attack

Blog

Byadmblake September 12, 2025

FortiGuard Labs’ network telemetry has observed active exploitation of known vulnerabilities in Drupal Core and the WP-Automatic WordPress plugin for initial access. Following compromise, attackers deploy multiple web shells and utilities to enable lateral movement, privilege escalation, and the installation of remote access trojans (RATs).

Blog

Sophos Firewall v21.5 early access is now available

Say hello to great new features and enhancements in v21.5.

Read More Sophos Firewall v21.5 early access is now available
Blog

Chinese Hackers Breach Asian Telecom, Remain Undetected for Over 4 Years

A major telecommunications company located in Asia was allegedly breached by Chinese state-sponsored hackers who spent over four years inside its systems, according to a new report from incident response firm Sygnia. The cybersecurity company is tracking the activity under the name Weaver Ant, describing the threat actor as stealthy and highly persistent. The name…

Read More Chinese Hackers Breach Asian Telecom, Remain Undetected for Over 4 Years
Blog

Beyond the hype: The business reality of AI for cybersecurity

Real-world insights from 400 IT leaders, plus practical guidance to enhance business outcomes

Read More Beyond the hype: The business reality of AI for cybersecurity
Blog

Google Chrome to Distrust Two Certificate Authorities Over Compliance and Conduct Issues

Google has revealed that it will no longer trust digital certificates issued by Chunghwa Telecom and Netlock citing “patterns of concerning behavior observed over the past year.” The changes are expected to be introduced in Chrome 139, which is scheduled for public release in early August 2025. The current major version is 137. The update…

Read More Google Chrome to Distrust Two Certificate Authorities Over Compliance and Conduct Issues
Blog

Red Hat Investigates Widespread Breach of Private GitLab Repositories

A threat actor claimed 28,000 private repositories had been compromised, and the Linux software maker said it had “initiated necessary remediation steps.”

Read More Red Hat Investigates Widespread Breach of Private GitLab Repositories
Blog

HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass

Hewlett Packard Enterprise (HPE) has released security updates to address as many as eight vulnerabilities in its StoreOnce data backup and deduplication solution that could result in an authentication bypass and remote code execution. “These vulnerabilities could be remotely exploited to allow remote code execution, disclosure of information, server-side request forgery, authentication bypass,

Read More HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass

Related