News Archives ⋆ CyberHood Sentinel

Pakistan-Linked Hackers Expand Espionage Campaigns, Targeting Key Indian Sectors with Advanced Malware

April 14, 2025 TeamHood

A Pakistan-linked cyber espionage group has significantly broadened its targeting footprint in a new wave of attacks against Indian organizations. According to a report published by cybersecurity firm SEQRITE, this…

News

SpyNote, BadBazaar, and MOONSHINE Malware Exploit Fake Apps to Target Android and iOS Users

April 11, 2025 TeamHood

Cybersecurity experts have uncovered a series of sophisticated malware campaigns—SpyNote, BadBazaar, and MOONSHINE—designed to compromise Android and iOS devices through deceptive applications and websites. SpyNote Malware Disguised as Legitimate Apps…

News

Advanced Threat Actors Shift Focus to Firmware-Level Persistence on FortiGate Devices

April 11, 2025 TeamHood

Fortinet has issued a critical advisory revealing that threat actors are maintaining unauthorized, read-only access to FortiGate devices even after the initial vulnerabilities have been patched. This persistent access is…

News

Unpatched NVIDIA Container Toolkit Bug Could Let Attackers Escape Docker and Hijack Linux Hosts

April 10, 2025 TeamHood

In September 2024, NVIDIA addressed a critical vulnerability in its Container Toolkit, identified as CVE-2024-0132, which had a CVSS score of 9.0. This Time-of-Check Time-of-Use (TOCTOU) flaw allowed specially crafted…

News

Gamaredon Hackers Use Infected USB Drives to Target Western Military in Ukraine with GammaSteel Malware

April 10, 2025 TeamHood

The Russian-affiliated cyber-espionage group Gamaredon, also known as Shuckworm, has recently been implicated in a cyber attack targeting a Western military mission stationed in Ukraine. This operation aimed to deploy…

News

Critical FortiSwitch Vulnerability (CVE-2024-48887) Prompts Urgent Firmware Updates from Fortinet

April 9, 2025 TeamHood

Fortinet has issued a critical security advisory concerning a significant vulnerability in its FortiSwitch product line. The flaw, designated as CVE-2024-48887, has been assigned a CVSS (Common Vulnerability Scoring System)…

News

Apple Releases Security Updates to Fix Three Actively Exploited Zero-Day Vulnerabilities in iOS and macOS

April 1, 2025 TeamHood

Apple has released critical security updates to address three zero-day vulnerabilities actively exploited in the wild, extending these fixes to older iOS and macOS devices. The vulnerabilities, identified as CVE-2025-24085,…

News

Russian Hackers Exploit CVE-2025-26633 in Microsoft MMC: Critical Zero-Day Vulnerability Under Attack

March 31, 2025 TeamHood

A Russian cybercriminal group, identified as Water Gamayun (also known as EncryptHub and LARVA-208), has been exploiting a zero-day vulnerability in the Microsoft Management Console (MMC) framework, designated as CVE-2025-26633…

News

Google Releases Urgent Chrome Update to Patch Actively Exploited Zero-Day Vulnerability

March 26, 2025 TeamHood

Google has issued an emergency security update for its Chrome browser on Windows to address a high-severity zero-day vulnerability, identified as CVE-2025-2783, which has been actively exploited in targeted attacks…

News

Apache Tomcat CVE-2025-24813 Exploited in the Wild – Patch Now to Prevent Attacks

March 17, 2025 TeamHood

A critical security vulnerability identified as CVE-2025-24813 has been discovered in Apache Tomcat, a widely used open-source Java servlet container. This flaw is actively being exploited in the wild, allowing…

Category: News

You missed