LayerX Launches ExtensionPedia

Blog

Byadmblake June 3, 2025

Post Content

Blog

The State of Ransomware in Manufacturing and Production 2025

332 IT and cybersecurity leaders reveal the ransomware realities for manufacturing and production organizations today.

Read More The State of Ransomware in Manufacturing and Production 2025
Blog

CISA Reports PRC Hackers Using BRICKSTORM for Long-Term Access in U.S. Systems

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday released details of a backdoor named BRICKSTORM that has been put to use by state-sponsored threat actors from the People’s Republic of China (PRC) to maintain long-term persistence on compromised systems. “BRICKSTORM is a sophisticated backdoor for VMware vSphere and Windows environments,” the agency said….

Read More CISA Reports PRC Hackers Using BRICKSTORM for Long-Term Access in U.S. Systems
Blog

Zimbra Collaboration Local File Inclusion

A Local File Inclusion (LFI) vulnerability (CVE-2025-68645) exists in the Zimbra Collaboration Suite (ZCS) Webmail Classic UI due to improper handling of user-supplied request parameters in the RestFilter servlet. An unauthenticated remote attacker can craft malicious requests, potentially exposing sensitive configuration and application data and aiding further compromise.

Read More Zimbra Collaboration Local File Inclusion
Blog

Preparing for the Quantum Era: Post-Quantum Cryptography Webinar for Security Leaders

Most organizations assume encrypted data is safe. But many attackers are already preparing for a future where today’s encryption can be broken. Instead of trying to decrypt information now, they are collecting encrypted data and storing it so it can be decrypted later using quantum computers. This tactic—known as “harvest now, decrypt later”—means sensitive data…

Read More Preparing for the Quantum Era: Post-Quantum Cryptography Webinar for Security Leaders
Blog

Hackers ‘Shellter’ Various Stealers in Red Team Tool to Evade Detection

Researchers have uncovered multiple campaigns spreading Lumma, Arechclient2, and Rhadamanthys malware by leveraging key features of the AV/EDR evasion framework.

Read More Hackers ‘Shellter’ Various Stealers in Red Team Tool to Evade Detection
Blog

Russian Hackers Create 4,300 Fake Travel Sites to Steal Hotel Guests’ Payment Data

A Russian-speaking threat behind an ongoing, mass phishing campaign has registered more than 4,300 domain names since the start of the year. The activity, per Netcraft security researcher Andrew Brandt, is designed to target customers of the hospitality industry, specifically hotel guests who may have travel reservations with spam emails. The campaign is said to…

Read More Russian Hackers Create 4,300 Fake Travel Sites to Steal Hotel Guests’ Payment Data

Related