🟢 CVE-2025-46328: snowflake-connector-nodejs is ... 🟢 CVE-2025-46327: gosnowflake is the Snowflake G... 🟢 CVE-2025-46326: snowflake-connector-net is the... 🟡 CVE-2025-4039: A vulnerability was found in P... 🟡 CVE-2025-4038: A vulnerability was found in c... 🟡 CVE-2025-4037: A vulnerability was found in c... 🟢 CVE-2025-0049: When a Web User without Create... 🟡 CVE-2024-11922: Missing input validation in ce... 🟡 CVE-2024-10635: Enterprise Protection contains... 🟡 CVE-2025-4036: A vulnerability was found in 2... 🟡 CVE-2025-4034: A vulnerability classified as ... ⚠️ CVE-2025-3224: A vulnerability in the update ... ⚠️ CVE-2025-34491: GFI MailEssentials prior to ve... 🟡 CVE-2025-4033: A vulnerability classified as ... 🟢 CVE-2025-4032: A vulnerability was found in i... 🟡 CVE-2025-34490: GFI MailEssentials prior to ve... ⚠️ CVE-2025-34489: GFI MailEssentials prior to ve... 🟡 CVE-2025-4031: A vulnerability was found in P... 🟡 CVE-2025-4030: A vulnerability was found in P... 🟢 CVE-2024-12706: Improper Neutralization of Spe... 🟡 CVE-2025-4029: A vulnerability was found in c... 🟡 CVE-2025-4028: A vulnerability has been found... 🟡 CVE-2024-32499: Newforma Project Center Server... 🟡 CVE-2023-42404: OneVision Workspace before WS2... 🟡 CVE-2025-4027: A vulnerability, which was cla... 🟡 CVE-2025-4026: A vulnerability, which was cla... 🟢 CVE-2025-46614: In Snowflake ODBC Driver befor... 🟡 CVE-2025-43857: Net::IMAP implements Internet ... 🟢 CVE-2025-43854: DIFY is an open-source LLM app... 🟡 CVE-2023-35817: DevExpress before 23.1.3 allow... 🟢 CVE-2023-35816: DevExpress before 23.1.3 allow... 🟢 CVE-2023-35815: DevExpress before 23.1.3 has a... 🟢 CVE-2023-35814: DevExpress before 23.1.3 does ... 🟡 CVE-2022-41871: SEPPmail through 12.1.17 allow... ⚠️ CVE-2015-4582: The TheCartPress boot-store (a... 🟡 CVE-2025-4025: A vulnerability classified as ... 🟡 CVE-2025-4024: A vulnerability classified as ... 🟡 CVE-2025-25776: Cross-Site Scripting (XSS) vul... 🟡 CVE-2025-23377: Dell PowerProtect Data Manager... 🟢 CVE-2025-23376: Dell PowerProtect Data Manager... ⚠️ CVE-2025-23375: Dell PowerProtect Data Manager... 🔥 CVE-2015-2079: Usermin 0.980 through 1.x befo... 🟡 CVE-2025-4023: A vulnerability was found in i... 🟡 CVE-2025-4022: A vulnerability was found in w... 🟡 CVE-2025-4021: A vulnerability was found in c... 🟡 CVE-2025-4020: A vulnerability was found in P... 🟡 CVE-2025-32472: The multiScan and picoScan are... 🟡 CVE-2025-4019: A vulnerability, which was cla... 🟡 CVE-2025-4018: A vulnerability, which was cla... 🟡 CVE-2025-4017: A vulnerability classified as ... 🟡 CVE-2025-4016: A vulnerability classified as ... 🟡 CVE-2025-4015: A vulnerability was found in 2... 🟡 CVE-2025-4014: A vulnerability was found in P... 🔥 CVE-2025-3200: An unauthenticated remote atta... 🟡 CVE-2025-4013: A vulnerability was found in P... 🟡 CVE-2025-4012: A vulnerability was found in p... 🟡 CVE-2025-4011: A vulnerability has been found... ⚠️ CVE-2025-42598: Multiple SEIKO EPSON printer d... 🟡 CVE-2025-39367: Missing Authorization vulnerab... 🟢 CVE-2025-32471: The device’s passwords have no... ⚠️ CVE-2025-32470: A remote unauthenticated attac... ⚠️ CVE-2025-4007: A vulnerability classified as ... ⚠️ CVE-2025-22235: EndpointRequest.to() creates a... 🟡 CVE-2025-4006: A vulnerability classified as ... 🟡 CVE-2025-4005: A vulnerability was found in P... 🟡 CVE-2025-4004: A vulnerability was found in P... 🟡 CVE-2025-4003: A vulnerability was found in R... 🟡 CVE-2025-4002: A vulnerability was found in R... 🟡 CVE-2025-4001: A vulnerability has been found... 🟡 CVE-2025-4000: A vulnerability, which was cla... 🟡 CVE-2025-3999: A vulnerability, which was cla... 🟡 CVE-2025-3998: A vulnerability classified as ... 🟡 CVE-2025-3997: A vulnerability classified as ... 🟡 CVE-2025-3996: A vulnerability was found in T... 🟡 CVE-2025-3706: The eHRMS from 104 Corporation... 🟡 CVE-2025-3995: A vulnerability was found in T... 🟡 CVE-2025-3994: A vulnerability was found in T... ⚠️ CVE-2025-3993: A vulnerability was found in T... ⚠️ CVE-2025-3992: A vulnerability has been found... ⚠️ CVE-2025-3991: A vulnerability, which was cla... 🟡 CVE-2025-31144: Quick Agent V3 and Quick Agent... ⚠️ CVE-2025-27937: Quick Agent V3 and Quick Agent... 🔥 CVE-2025-26692: Quick Agent V3 and Quick Agent... ⚠️ CVE-2025-3990: A vulnerability, which was cla... ⚠️ CVE-2025-3989: A vulnerability classified as ... 🟡 CVE-2025-46690: Ververica Platform 2.14.0 allo... 🟡 CVE-2025-46689: Ververica Platform 2.14.0 cont... ⚠️ CVE-2025-3988: A vulnerability classified as ... 🟡 CVE-2025-3987: A vulnerability was found in T... 🟡 CVE-2025-3986: A vulnerability was found in A... 🟡 CVE-2025-3985: A vulnerability was found in A... 🟡 CVE-2025-46688: quickjs-ng through 0.9.0 has a... 🟡 CVE-2025-46687: quickjs-ng through 0.9.0 has a... 🟢 CVE-2025-3984: A vulnerability was found in A... 🟡 CVE-2025-3983: A vulnerability has been found... 🟡 CVE-2025-3982: A vulnerability, which was cla... 🟡 CVE-2025-3981: A vulnerability, which was cla... 🟢 CVE-2025-2866: Improper Verification of Crypt... 🟡 CVE-2025-3980: A vulnerability classified as ... 🟡 CVE-2025-3979: A vulnerability classified as ...
Understanding Modern Cyber Threats: From ToxicEye to FrigidStealer

By Cybersecurity Team on

Welcome to the evolving world of cybersecurity, where the arms race between cyber defenders and cybercriminals continues to escalate. In this blog post, we will delve into several sophisticated cyber threats that have emerged recently, including the ToxicEye malware, the FrigidStealer targeting MacOS, and increased phishing campaigns by Iranian-backed groups. Our aim is to demystify these threats and provide actionable advice to enhance your cybersecurity posture.

The Rise of ToxicEye

Reported on by Packet Storm, the malware known as ToxicEye is leveraging the popular Telegram app to conduct its nefarious activities. This malware is a type of Remote Access Trojan (RAT) that takes control of a victim's system. By embedding its command and control communication mechanisms within Telegram, ToxicEye can bypass traditional security measures undetected. This represents a shift in how attackers are exploiting trusted applications to distribute malware.

New Threats on MacOS: FrigidStealer

As reported by SecurityBrief, the FrigidStealer malware is a new player targeting MacOS users. This malware is particularly dangerous because it focuses on stealing sensitive information, such as credentials and financial data. The emergence of groups like TA2726 and TA2727, who specialize in these attacks, indicates a growing trend towards targeting previously less-attacked platforms like MacOS.

Increased Phishing Efforts by Iranian Groups

An update from Packet Storm highlights increased phishing campaigns by an Iranian-backed group known as APT42. These campaigns are sophisticated, involving various tactics such as hosting malicious pages and malware delivery via email. The geopolitical implications of such campaigns are significant, affecting national security on multiple fronts.

The Return of Dridex and Locky

According to a report from Malware News, the notable malware families Dridex and Locky have resurfaced, this time being spread through PDF attachments in spam emails. These types of malware are notorious for their ability to siphon financial information and execute ransomware attacks, and their resurgence is a crucial reminder of the need for constant vigilance in email security.

Conclusion and Protective Measures

The landscape of cyber threats is continually changing, with attackers always looking for new methods to exploit and new vulnerabilities to target. Awareness and education are key components of a robust defense strategy. Employ strong antimalware tools, keep your systems updated, and be vigilant about unsolicited emails and attachments. Regularly back up your data, and consider using multi-factor authentication to add an extra layer of security.

Back to Posts