Infosecurity Magazine

ClickFix Social Engineering Sparks Rise of CastleLoader Attacks

A new malware campaign has been identified using a Python-based delivery system to deploy CastleLoader malware ...
Infosecurity Magazine

Google Fixes Zero Click Gemini Enterprise Flaw That Exposed Corporate Data

The flaw, dubbed ‘GeminiJack,’ exploits the trust boundary between user-controlled content in data sources and the AI model’s ...
Infosecurity Magazine

Log4Shell Downloaded 40 Million Times in 2025

Sonatype has claimed that 13% of Log4j versions downloaded this year were vulnerable to the legacy critical Log4Shell bug ...
Infosecurity Magazine

Pro-Russia Hackers Target US Critical Infrastructure in New Wave

Pro-Russia hacktivist groups have been observed exploiting exposed virtual network computing connections to breach OT systems ...
Infosecurity Magazine

Microsoft Fixes Three Zero-Days in Final Patch Tuesday of 2025

CVE-2025-62221 is an elevation of privilege (EoP) bug in the Windows Cloud Files Mini Filter Driver, which enables a low-privileged user to achieve system-level code execution through a kernel-mode ...