Tag: EN

New Phantom Stealer Campaign Hits Windows Machines Through ISO Mounting

Researchers have uncovered a sophisticated phishing campaign originating in Russia that deploys the Phantom information-stealing malware via malicious ISO files. The attack, dubbed “Operation MoneyMount-ISO,” targets finance and accounting departments explicitly using fake payment confirmation emails to trick victims into…

Multiple Threat Actors Exploit React2Shell (CVE-2025-55182)

Written by: Aragorn Tseng, Robert Weiner, Casey Charrier, Zander Work, Genevieve Stark, Austin Larsen Introduction On Dec. 3, 2025, a critical unauthenticated remote code execution (RCE) vulnerability in React Server Components, tracked as CVE-2025-55182 (aka “React2Shell”), was publicly disclosed. Shortly…

Fake Leonardo DiCaprio Torrent Spreads Agent Tesla Malware

A fake Leonardo DiCaprio movie torrent is spreading Agent Tesla malware through trusted Windows tools. The post Fake Leonardo DiCaprio Torrent Spreads Agent Tesla Malware appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the…

Windows Defender Firewall Bug Leaks Sensitive Memory

A Windows Defender Firewall flaw lets privileged attackers read sensitive memory, showing how low-severity bugs can still enable data exposure. The post Windows Defender Firewall Bug Leaks Sensitive Memory appeared first on eSecurity Planet. This article has been indexed from…