APT

Critical SAP NetWeaver Vulnerability Targeted by Ransomware and APT Groups

Cybercrime, Risk, Vulnerabilities

May 16, 2025

Ransomware and Chinese APT groups are exploiting a critical vulnerability in SAP’s NetWeaver, identified as CVE-2025-31324, which has a CVSS score of 10, enabling attackers to execute remote code without authentication.
China-Aligned Threat Actor Exploits IPv6 to Hijack Software Updates

Cybercrime, News, Policy, Vulnerabilities

May 1, 2025

TheWizards, a China-aligned APT group, has been exploiting IPv6 protocol vulnerabilities to hijack software updates, deploying malicious tools that facilitate ongoing access to infected systems.
Google Patches Critical Zero-Day Flaw in Chrome Amid Ongoing Cyber Threats

Cybercrime, News, Risk, Vulnerabilities

March 27, 2025

Google has issued a security patch for Chrome to address a severe zero-day vulnerability exploited in phishing attacks, urging users to update their browser as cyber threats continue to evolve.