Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence

21/12/2025 CyberGeek 0 Comments 0 tags

Threat hunters have discerned new activity associated with an Iranian threat actor known as Infy (aka Prince of Persia), nearly five years after the hacking group was observed targeting victims

Read More

U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware

20/12/2025 CyberGeek 0 Comments 0 tags

The U.S. Department of Justice (DoJ) this week announced the indictment of 54 individuals in connection with a multi-million dollar ATM jackpotting scheme. The large-scale conspiracy involved deploying malware named

Read More

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

19/12/2025 CyberGeek 0 Comments 0 tags

A suspected Russia-aligned group has been attributed to a phishing campaign that employs device code authentication workflows to steal victims’ Microsoft 365 credentials and conduct account takeover attacks. The activity,

Read More

Cracked Software and YouTube Videos Spread CountLoader and GachiLoader Malware

19/12/2025 CyberGeek 0 Comments 0 tags

Cybersecurity researchers have disclosed details of a new campaign that has used cracked software distribution sites as a distribution vector for a new version of a modular and stealthy loader

Read More

WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability

19/12/2025 CyberGeek 0 Comments 0 tags

WatchGuard has released fixes to address a critical security flaw in Fireware OS that it said has been exploited in real-world attacks. Tracked as CVE-2025-14733 (CVSS score: 9.3), the vulnerability

Read More

Nigeria Arrests RaccoonO365 Phishing Developer Linked to Microsoft 365 Attacks

19/12/2025 CyberGeek 0 Comments 0 tags

Authorities in Nigeria have announced the arrest of three “high-profile internet fraud suspects” who are alleged to have been involved in phishing attacks targeting major corporations, including the main developer

Read More

New UEFI Flaw Enables Early-Boot DMA Attacks on ASRock, ASUS, GIGABYTE, MSI Motherboards

19/12/2025 CyberGeek 0 Comments 0 tags

Certain motherboard models from vendors like ASRock, ASUSTeK Computer, GIGABYTE, and MSI are affected by a security vulnerability that leaves them susceptible to early-boot direct memory access (DMA) attacks across

Read More

China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware

18/12/2025 CyberGeek 0 Comments 0 tags

A previously undocumented China-aligned threat cluster dubbed LongNosedGoblin has been attributed to a series of cyber attacks targeting governmental entities in Southeast Asia and Japan. The end goal of these

Read More

HPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code Execution

18/12/2025 CyberGeek 0 Comments 0 tags

Hewlett Packard Enterprise (HPE) has resolved a maximum-severity security flaw in OneView Software that, if successfully exploited, could result in remote code execution. The critical vulnerability, assigned the CVE identifier

Read More

ThreatsDay Bulletin: WhatsApp Hijacks, MCP Leaks, AI Recon, React2Shell Exploit and 15 More Stories

18/12/2025 CyberGeek 0 Comments 0 tags

This week’s ThreatsDay Bulletin tracks how attackers keep reshaping old tools and finding new angles in familiar systems. Small changes in tactics are stacking up fast, and each one hints

Read More