Chinese hackers install backdoors via Cisco email zero-day

አማርኛ

Cisco Talos has detailed how a Chinese-linked group is exploiting an unpatched zero-day in email security appliances since late November 2025, deploying backdoors and log-wiping tools for persistent access.

Building on initial reports from December 19, Cisco Talos researchers revealed more on the zero-day campaign targeting email security appliances. The suspected Chinese-linked group roots devices to install backdoors and tools that erase logs, enabling stealthy persistence likely for espionage.

No patch is available yet, prompting urgent monitoring for anomalous activity. This aligns with patterns of state-sponsored attacks on network hardware, emphasizing zero-day risks in enterprise defenses.

ተያያዥ ጽሁፎች

Illustration depicting the Linux CopyFail vulnerability enabling root access exploits alongside Ubuntu's DDoS-induced outage.
በ AI የተሰራ ምስል

Linux CopyFail exploit threatens root access amid Ubuntu outage

በAI የተዘገበ በ AI የተሰራ ምስል

A critical Linux vulnerability known as CopyFail, tracked as CVE-2026-31431, allows attackers to gain root access on systems running kernels since 2017. Publicly released exploit code has heightened risks for data centers and personal devices. Ubuntu's infrastructure has been offline for over a day due to a DDoS attack, hampering security communications.

FBI urges router security steps after Russian GRU attacks

US federal agencies have disclosed that Russian military intelligence compromised thousands of small office and home routers, urging owners to take immediate protective measures.

Trend Micro Apex One zero-day exploited in the wild

በAI የተዘገበ

A newly discovered flaw in Trend Micro's Apex One allows hackers to inject malicious code. The zero-day vulnerability is being actively exploited.

Linux

US government issues urgent CopyFail warning as Linux patches roll out

ቴክኖሎጂ

ShinyHunters exploits critical PeopleSoft zero-day vulnerability

ቴክኖሎጂ

Microsoft warns of password reset exploits by hackers

Zero-day exploit bypasses default windows 11 bitlocker encryption

A newly published zero-day exploit allows attackers with physical access to bypass BitLocker encryption on Windows 11 devices in seconds. The attack, named YellowKey, targets the default TPM-only configuration and grants full access to encrypted drives via a simple USB-based method.

June 18, 2026 00:38

Massive Fortinet breach exposes credentials of major organizations

May 20, 2026 21:38

Google publishes exploit code for unfixed chromium vulnerability

May 15, 2026 14:22

Security researchers breach macOS using Anthropic AI tool

May 05, 2026 12:10

Daemon Tools app hit by monthlong supply-chain attack

April 07, 2026 17:23

Western agencies warn of russian hackers on tp-link routers

ይህ ድረ-ገጽ ኩኪዎችን ይጠቀማል

የእኛን ጣቢያ ለማሻሻል ለትንታኔ ኩኪዎችን እንጠቀማለን። የእኛን የሚስጥር ፖሊሲ አንብቡ የሚስጥር ፖሊሲ ለተጨማሪ መረጃ።
ውድቅ አድርግ