MITRE Attack Flow v3.0.0
The cybersecurity landscape is constantly changing, and understanding complex attack scenarios is now critical for protecting organizations. One of the…
Threats
CVE-2025-59230 and CVE-2025-24990 Vulnerabilities: New Windows Zero-Days Under Active Exploitation
Hot on the heels of the disclosure of CVE-2025-11001 and CVE-2025-11002 in 7-Zip, two newly discovered zero-day flaws in popular…
UAC-0239 Activity Detection: Targeted Spearphishing Attacks Against Defense Forces and State Bodies of Ukraine via the OrcaC2 Framework and FILEMESS Stealer
CERT-UA has observed a wave of increasing offensive activity leveraging spearphishing and targeting the Defence Forces and local state agencies…
CVE-2025-11001 and CVE-2025-11002 Vulnerabilities: Critical Flaws in 7-Zip Enable Remote Code Execution
As this fall season brings a surge of newly disclosed vulnerabilities and heightened patch activity across the cybersecurity landscape, organizations…
CVE-2025-43300 Vulnerability: Zero-Day in iOS, iPadOS, and macOS Under Active Exploitation
As the season shifts from summer to fall, the cyber threat landscape is heating up rather than cooling down. Following…
CVE-2025-9074: Critical Vulnerability in Docker Desktop Enables Local Container Access to Docker Engine API via Subnet
Docker is one of the backbones of modern enterprise infrastructure, powering cloud-native applications, CI/CD pipelines, and microservices at massive scale.…
Crypto24 Ransomware Detection: Hackers Hit Large Organizations via Legitimate Tools and Custom Malware to Stay Under the Radar
Ransomware continues to rank among the most critical cyber threats. According to the 2025 Verizon Data Breach Investigations Report (DBIR),…
CVE-2025-8088 Detection: WinRAR Zero-Day Is Actively Exploited in the Wild to Install RomCom Malware
As summer reaches its peak, the cyber threat landscape is heating up just as fast. Following the recent disclosure of…
UAC-0099 Attack Detection: Hackers Target Government and Defense Agencies in Ukraine Using MATCHBOIL, MATCHWOK, and DRAGSTARE Malware
The UAC-0099 hacking collective, active in cyber-espionage campaigns against Ukraine since mid-2022, has reemerged in the cyber threat arena. The…
Secret Blizzard Attack Detection: russia-Backed APT Targets Foreign Embassies in Moscow With ApolloShadow Malware
russia-affiliated hacking groups remain a major global threat, continuously adapting their tactics to serve Moscow’s geopolitical interests. As international tensions…