PureRAT Malware Spikes 4x in 2025, Deploying PureLogs to Target Russian Firms

May 21, 2025

Russian organizations have become the target of a phishing campaign that distributes malware called PureRAT, according to new findings from Kaspersky.
“The campaign aimed at Russian business began back in March 2023, but in the first third of 2025 the number of attacks quadrupled compared to the same period in 2024,” the cybersecurity vendor said.
The attack chains, which have not been

Source: Read More

Previous ArticleThe New Region

Next Article Fake Kling AI Facebook Ads Deliver RAT Malware to Over 22 Million Potential Victims

Highlights

CVE-2025-54140 – pyLoad Path Traversal Remote Code Execution Vulnerability

July 22, 2025

CVE ID : CVE-2025-54140

Published : July 22, 2025, 10:15 p.m. | 2 hours, 20 minutes ago

Description : pyLoad is a free and open-source Download Manager written in pure Python. In version 0.5.0b3.dev89, an authenticated path traversal vulnerability exists in the /json/upload endpoint of pyLoad. By manipulating the filename of an uploaded file, an attacker can traverse out of the intended upload directory, allowing them to write arbitrary files to any location on the system accessible to the pyLoad process. This may lead to: Remote Code Execution (RCE), local privilege escalation, system-wide compromise, persistence, and backdoors. This is fixed in version 0.5.0b3.dev90.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

A Week In The Life Of An AI-Augmented Designer

This week in AI updates: Gemini Code Assist Agent Mode, GitHub’s Agents panel, and more (August 22, 2025)

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

The best AirTag alternative for Samsung users is currently 30% off

One of the biggest new features on the Google Pixel 10 is also one of the most overlooked

I tested these viral ‘crush-proof’ Bluetooth speakers, and they’re not your average portables

I compared the best smartwatches from Google and Apple – and there’s a clear winner

MongoDB Data Types

MongoDB Data Types

Building Cross-Platform Alerts with Laravel’s Notification Framework

Add Notes Functionality to Eloquent Models With the Notable Package

Microsoft Teams updated with a feature you probably thought already existed — “Can you hear me?” is now a thing of the past

Microsoft Teams updated with a feature you probably thought already existed — “Can you hear me?” is now a thing of the past

Xbox Game Pass gets Gears of War: Reloaded, Dragon Age: The Veilguard, and more — here’s what is coming through the rest of August

Resident Evil ‘9’ Requiem has some of the most incredible lighting I’ve seen in a game — and Capcom uses it as a weapon

PureRAT Malware Spikes 4x in 2025, Deploying PureLogs to Target Russian Firms

Scaling Up Reinforcement Learning for Traffic Smoothing: A 100-AV Highway Deployment

Repurposing Protein Folding Models for Generation with Latent Diffusion

Customer Account Takeovers: The Multi-Billion Dollar Problem You Don’t Know About

CVE-2025-44906 – jhead Heap Use After Free Vulnerability

Sam Altman is secretly developing an X-like social media app to rival Elon Musk and Meta: “If Facebook tries to come at us and we just uno reverse them, it would be so funny”

CVE-2011-10011 – WeBid Remote Code Injection Vulnerability

CVE-2025-54140 – pyLoad Path Traversal Remote Code Execution Vulnerability

Crafting Strong DX With Astro Components and Typescript

Pins creates and edits app shortcuts

Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Execution

PureRAT Malware Spikes 4x in 2025, Deploying PureLogs to Target Russian Firms

Related Posts