KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

June 18, 2025

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

Unit 42 has uncovered two newly evolved variants of the KimJongRAT malware, one using traditional PE (Portable Executable) files and the other employing PowerShell-based scripts to infiltrate systems, …

Published Date:
Jun 18, 2025 (2 hours, 21 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2023-2530

Source: Read More

Previous ArticleCritical Linux Root Exploit Chain Discovered in PAM & UDisks, Affecting Major Distros

Next Article Trinper Backdoor Exploiting Chrome Zero-Day CVE-2025-2783

Highlights

CVE-2025-4101 – MultiVendorX WooCommerce Multivendor Marketplace Solutions Unauthenticated Data Deletion Vulnerability

May 17, 2025

CVE ID : CVE-2025-4101

Published : May 17, 2025, 1:15 p.m. | 3 hours, 30 minutes ago

Description : The MultiVendorX – WooCommerce Multivendor Marketplace Solutions plugin for WordPress is vulnerable to unauthorized loss of data due to a misconfigured capability check on the ‘delete_fpm_product’ function in all versions up to, and including, 4.2.22. This makes it possible for authenticated attackers, with Contributor-level access and above, to delete arbitrary posts, pages, attachments, and products. The vulnerability was partially patched in version 4.2.22.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

ScyllaDB X Cloud’s autoscaling capabilities meet the needs of unpredictable workloads in real time

Parasoft C/C++test 2025.1, Secure Code Warrior AI Security Rules, and more – Daily News Digest

What I Wish Someone Told Me When I Was Getting Into ARIA

SD Times 100

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

This Xbox game emotionally wrecked me in less than four hours… I’m going to go hug my cat now

Top 5 desktop PC case features that I can’t live without — and neither should you

‘No aggressive monetization’ — Nexus Mods’ new ownership responds to worried members

Build AI Agents That Run Your Day – While You Focus on What Matters

Build AI Agents That Run Your Day – While You Focus on What Matters

Faster Builds in Meteor 3.3: Modern Build Stack with SWC and Bundler Optimizations

How to Change Redirect After Login/Register in Laravel Breeze

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

Clair Obscur: Expedition 33 is a masterpiece, but I totally skipped parts of it (and I won’t apologize)

This Xbox game emotionally wrecked me in less than four hours… I’m going to go hug my cat now

Top 5 desktop PC case features that I can’t live without — and neither should you

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

Linux Kernel Flaw (CVE-2023-0386) Actively Exploited for Root Privilege Escalation, PoC Available

Trinper Backdoor Exploiting Chrome Zero-Day CVE-2025-2783

DietPi – extremely lightweight Debian-based distribution

CVE-2025-45019 – PHPGurukul Park Ticketing Management System SQL Injection

CVE-2025-5334 – Devolutions Remote Desktop Manager Private Data Exposure and Unauthorized Access

Critical Commvault Flaw Allows Full System Takeover – Update NOW

CVE-2025-4101 – MultiVendorX WooCommerce Multivendor Marketplace Solutions Unauthenticated Data Deletion Vulnerability

CVE-2025-43973 – GoBGP Buffer Overflow Vulnerability

Did iOS 18.4 wreck CarPlay for you? Try these fixes to get back on track

Apple vs. EU: AirDrop, AirPlay & Seamless Pairing at Risk in Europe!

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

Related Posts