Yasna | Cybersecurity news, filtered

Bleeping Computer 3 months, 4 weeks ago

New Amaranth Dragon cyberespionage group exploits WinRAR flaw

A new threat actor called Amaranth Dragon, linked to APT41 state-sponsored Chinese operations, exploited the CVE-2025-8088 vulnerability in WinRAR in espionage attacks on government and law enforcement agencies. [...]

More from Bleeping Computer 5 Feb 2026, 3:00 a.m. Actively exploited CVE-2025-8088 CVE China Exploit Flaw Government Nation State Threat Actor Vulnerability

Bank Info Security 5 months, 2 weeks ago

Nation-State and Cybercrime Exploits Tied to React2Shell

2 More Vulnerabilities Need Patching in React Server Components, Warns VercelMass exploitation of the "React2Shell" - CVE-2025-55182 - vulnerability remains underway by nation-state hackers tied to China, North Korea and Iran, as well as financially motivated cybercriminals running everything from cryptomining malware to DDoS services, security experts warn.

More from Bank Info Security 16 Dec 2025, 6:30 a.m. Actively exploited CVE-2025-55182 CVE China Cryptocurrency DoS Exploit Iran Malware Nation State North Korea Vulnerability Warning

Dark Reading 6 months, 4 weeks ago

APT 'Bronze Butler' Exploits Zero-Day to Root Japan Orgs

A critical security issue in a popular endpoint manager (CVE-2025-61932) allowed Chinese state-sponsored attackers to backdoor Japanese businesses.

More from Dark Reading 6 Nov 2025, 3:00 p.m. Actively exploited CVE-2025-61932 0-Day Advanced Persistent Threat Backdoor CVE China Critical Exploit Japan Nation State Root

The Hacker News 10 months, 1 week ago

CISA Orders Urgent Patching After Chinese Hackers Exploit SharePoint Flaws in Live Attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), on July 22, 2025, added two Microsoft SharePoint flaws, CVE-2025-49704 and CVE-2025-49706, to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation

More from The Hacker News 23 Jul 2025, 4:40 p.m. Actively exploited CVE-2025-49704 CVE-2025-49706 America CISA CVE China Exploit Flaw Microsoft Vulnerability

The Hacker News 1 year ago

China-Linked APTs Exploit SAP CVE-2025-31324 to Breach 581 Critical Systems Worldwide

A recently disclosed critical security flaw impacting SAP NetWeaver is being exploited by multiple China-nexus nation-state actors to target critical infrastructure networks

More from The Hacker News 14 May 2025, 3:13 a.m. Actively exploited CVE-2025-31324 Advanced Persistent Threat Breach CVE China Critical Critical Infrastructure Disclosure Exploit Flaw Nation State Remote Code Execution Unauthenticated Vulnerability

The Hacker News 1 year ago

Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell

A China-linked unnamed threat actor dubbed Chaya_004 has been observed exploiting a recently disclosed security flaw in SAP NetWeaver

More from The Hacker News 9 May 2025, 4:29 p.m. Actively exploited CVE-2025-31324 CVE China Critical Disclosure Exploit Flaw Hacking Remote Code Execution Report Threat Actor

Dark Reading 1 year, 9 months ago

China's Volt Typhoon Exploits 0-day in Versa's SD-WAN Director Servers

So far, the threat actor has compromised at least five organizations using CVE-2024-39717; CISA has added bug to its Known Exploited Vulnerability database.

More from Dark Reading 28 Aug 2024, 2:00 a.m. Actively exploited CVE-2024-39717 0-Day CISA CVE China Compromise Database Exploit Threat Actor Vulnerability

Bleeping Computer 1 year, 11 months ago

Hackers exploit 2018 ThinkPHP flaws to install ‘Dama’ web shells

Chinese threat actors are targeting ThinkPHP applications vulnerable to CVE-2018-20062 and CVE-2019-9082 to install a persistent web shell named Dama. [...]

More from Bleeping Computer 7 Jun 2024, 9:26 a.m. Actively exploited CVE-2018-20062 CVE-2019-9082 CVE China Exploit Flaw Threat Actor Vulnerability

Dark Reading 2 years, 4 months ago

Chinese Spies Exploited Critical VMware Bug for Nearly 2 Years

Even the most careful VMware customers may need to go back and double check that they weren't compromised by a zero-day exploit for CVE-2023-34048.

More from Dark Reading 23 Jan 2024, 11:08 a.m. Actively exploited CVE-2023-34048 0-Day CVE China Compromise Critical Exploit VMware Virtualisation

Bleeping Computer 2 years, 4 months ago

Chinese hackers exploit VMware bug as zero-day for two years

A Chinese hacking group has been exploiting a critical vCenter Server vulnerability (CVE-2023-34048) as a zero-day since at least late 2021. [...]

More from Bleeping Computer 20 Jan 2024, 5:32 a.m. Actively exploited CVE-2023-34048 0-Day CVE China Critical Exploit Hacking VMware Virtualisation Vulnerability

Dark Reading 2 years, 6 months ago

'CitrixBleed' Linked to Ransomware Hit on China's State-Owned Bank

Meanwhile, CISA joins the call to patch CVE-2023-4966 immediately amid reports of mass-exploit activity; at least 5,000 orgs remain exposed.

More from Dark Reading 11 Nov 2023, 7:59 a.m. Actively exploited CVE-2023-4966 Banking CISA CVE China Exploit Exposure Finance Patch Ransomware

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available