February 2025 – Page 3 – TheCyberThrone

XELERA Ransomware Dissection

The XELERA Ransomware campaign represents a sophisticated and targeted cyber threat that has recently exploited job seekers through deceptive tactics. Overview of the XELERA Ransomware Campaign Emergence and Tactics Target…

PravinKarthik February 22, 2025

Bybit Crypto Exchange Security Breach

Incident Overview Bybit, a major cryptocurrency exchange based in Dubai, experienced a significant security breach. This attack resulted in the largest crypto theft in history, with over $1.4 billion worth…

PravinKarthik February 22, 2025

MongoDB is affected by Twin Critical Vulnerabilities

CVE-2025-23061: Mongoose Search Injection Vulnerability Description: CVE-2025-23061 is a critical vulnerability identified in Mongoose versions prior to 8.9.5. The vulnerability arises due to the improper handling of nested $where filters…

PravinKarthik February 21, 2025

Atlassian’s Security Advisory Addresses Multiple Vulnerabilities

In February 2025, Atlassian released a comprehensive security advisory addressing 12 critical and high-severity vulnerabilities across its suite of products, including Bamboo, Bitbucket, Confluence, Crowd, and Jira. This analysis provides…

PravinKarthik February 21, 2025

CISA adds Craft CMS and PaloAlto Flaws to KEV Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) recently added two critical vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog. These vulnerabilities are: CVE-2025-23209: A code injection vulnerability in Craft CMS.…

PravinKarthik February 21, 2025

Raymond Unfazes a Cyber Attack

Raymond Ltd, a prominent textile and clothing company, recently experienced a significant cyber attack. This incident underscores the importance of robust cybersecurity measures and proactive incident response strategies. The threat…

PravinKarthik February 20, 2025

CVE-2024-12284 impacts NetScaler

CVE-2024-12284 is a high severity vulnerability identified in the NetScaler Console (formerly NetScaler ADM) and NetScaler Console Agent. Vulnerability Details Nature of CVE-2024-12284 Description: CVE-2024-12284 is categorized as a privilege…

PravinKarthik February 20, 2025

Ghost Ransomware Dissection

Ghost Ransomware, also known by various aliases such as Cring, Crypt3r, Phantom, Strike, Hello, Wickrme, HsHarada, and Rapture, is a sophisticated ransomware threat that has targeted organizations globally. This detailed…

PravinKarthik February 20, 2025