The U.S. Department of Homeland Security’s ICS-CERT confirmed a serious backdoor and related vulnerabilities in Hikvision cameras, validating findings first disclosed by researcher Montecrypto. The ad
CyberScoop reports that CVE-2026-31431, nicknamed “Copy Fail,” is an actively exploited Linux local privilege-escalation vulnerability that can give an attacker root access once they already have auth
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit
news
rapid7.com
an0pin2q61hkx4UycDQ0nXZ9w29sAdS7Pgb2SDqGMwc=
Feb 5
Rapid7 Labs and the MDR team have identified a campaign by the Chinese APT group Lotus Blossom, which has been active since 2009, focusing on espionage against various sectors in Southeast Asia and Ce
Notepad++ Hijacked by State-Sponsored Hackers
news
notepad-plus-plus.org
fnFo7CqDg0hZ6zASBF+Z1CdjGWMAtxfk6jKLmz2LdtY=
Feb 2
Notepad++ was compromised by a state-sponsored hacking group, suspected to be Chinese, which intercepted update traffic by exploiting vulnerabilities in the shared hosting provider's infrastructure ra
Notepad++ Hijacked by State-Sponsored Hackers
news
notepad-plus-plus.org
an0pin2q61hkx4UycDQ0nXZ9w29sAdS7Pgb2SDqGMwc=
Feb 2
Notepad++ was hijacked by state-sponsored hackers, believed to be a Chinese group, who compromised the hosting provider's infrastructure to intercept update traffic from June 2025. The attack involved
Attacks exploiting the critical React2Shell vulnerability have surged, affecting over 50 organizations globally, as various attackers, including nation-states and cybercriminals, seek to exploit its f