Threat Analyst
Artem specializes in analyzing large-scale data breaches and social engineering methods. He believes that the primary vulnerability in any system isn't code-it's human behavior. In his articles, he deconstructs complex cybercriminal schemes and transforms them into actionable security guidelines.
Three miIO protocol flaws chain into root RCE on the Xiaomi C400 camera. TASZK Security Labs published the full exploit and a cloud jailbreak tool. A Wi-Fi-adjacent attacker needs no …
Read more →
A five-stage chain uses ClickFix social engineering and the Deno JavaScript runtime to load CastleRAT entirely in memory. ThreatDown calls it the first Deno abuse in malware. Velvet Tempest already …
Read more →
Two Chrome Mojo sandbox escapes (CVSS 9.6 and 8.3), a chainable Unraid NAS auth bypass + root RCE, and an AnythingLLM SQL injection lead 87 notable CVEs from March 16. …
Read more →
Bogus AI downloads tricked macOS users into pasting Terminal commands that dropped the MacSync infostealer. Sophos tracked 50,000+ clicks in days. A parallel InstallFix variant hits developers because curl | …
Read more →
Eight tech giants pledged to share threat intelligence against cross-platform criminal networks at the first UN Global Fraud Summit. The voluntary pact carries no penalties, and global losses topped $1 …
Read more →
Android banking trojans jumped 56% in 2025, and nearly all of them abuse the AccessibilityService API. Android 17 Beta 2 now blocks non-accessibility apps from using the API when Advanced …
Read more →
Five critical vulnerabilities lead the March 14-15 batch of 215 new CVEs. A CVSS 9.8 unauthenticated WordPress RCE, OneUptime's fourth CVSS 9.9 in six weeks, and three unpatched D-Link buffer …
Read more →
A supply-chain operation planted 72 malicious VS Code extensions on Open VSX using transitive dependencies that bypass initial review. The same GlassWorm threat actor injected Unicode payloads into 151 GitHub …
Read more →
A global law enforcement operation seized 34 domains and froze $3.5 million in crypto after the SocksEscort proxy botnet hijacked 369,000 routers across 163 countries. According to the FBI, the …
Read more →
An unauthenticated file upload in the WordPress Pix for WooCommerce plugin scored CVSS 9.8, and OneUptime collected its fourth critical vulnerability in two weeks. The March 14 digest covers 10 …
Read more →
A six-month Interpol crackdown across 72 countries sinkholed 45,000 malicious IPs and arrested 94 people. Operation Synergia III is the largest phase yet, more than doubling the IP takedowns of …
Read more →
Four CVSS 9.9 flaws hit Veeam Backup and Replication, letting domain users run code on backup servers. The March 13 vulnerability digest covers eight Veeam patches, a Tolgee XXE, and …
Read more →