Most recent articles by:
Deep Shah
Deep is the Co-founder at Codezeros Technology. His strong business acumen and industry knowledge in the Blockchain industry make him one of the strongest pillars at Codezeros. He comes with a rich technological and business understanding to lead. His deep understanding of Blockchain technology integration is a key component of our success at Codezeros. He also contributes to the overall vision of the company's growth and development.
News
Mustang Panda Uses Kernel Rootkit to Deploy TONESHELL in SEA
Mustang Panda used a signed kernel-mode minifilter driver to load a new TONESHELL backdoor in mid-2025.The malicious driver protects files, processes, and registry keys...
News
Silver Fox uses tax-themed phishing to deliver ValleyRAT now
Silver Fox is using India-themed tax phishing to spread the modular remote-access trojan ValleyRAT.Attackers use decoy PDFs that download an NSIS installer which sideloads...
News
Spear-phishers hide HTML lures in 27 malicious npm packages.
Attackers published 27 packages to the npm registry to host browser-based phishing lures that harvest credentials.The campaign targeted sales and commercial staff at critical-infrastructure-adjacent...
News
CVE-2025-14847 ‘MongoBleed’ exposes 87,000 MongoDB Worldwide
CVE-2025-14847 (nicknamed MongoBleed) lets unauthenticated attackers leak memory from MongoDB servers.More than 87,000 potentially vulnerable instances were identified worldwide, many with default zlib compression...
News
MongoDB Zlib Flaw CVE-2025-14847 Exposes Heap Memory Urgent!
A high-severity flaw, CVE-2025-14847 (CVSS 8.7), can let unauthenticated clients read uninitialized heap memory.The problem stems from mismatched length fields in zlib-compressed protocol headers.Many...
News
Trust Wallet Chrome Extension Breach Drains $7M; Update Now!
Trust Wallet Chrome extension version 2.68 contained malicious code that led to roughly $7 million in stolen crypto.The extension’s developer urged users to update...
News
LangChain ‘LangGrinch’ Flaw Lets Attackers Steal Secrets Now
LangChain Core contains a critical serialization injection flaw (CVE-2025-68664, CVSS 9.3) that can expose secrets and enable prompt injection.The bug stems from improper escaping...
News
LastPass vaults cracked; $35M stolen, Russians implicated…
Encrypted vault backups taken in the 2022 breach of LastPass were cracked using weak master passwords, leading to wallet drains as recently as late...
