HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

July 15, 2025

HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

Researchers from Unit 42 at Palo Alto Networks have uncovered a novel backdoor—HazyBeacon—used by a threat cluster identified as CL-STA-1020. The campaign, which began in late 2024, has targeted gover …

Published Date:
Jul 15, 2025 (16 hours, 12 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-53833

CVE-2025-43856

CVE-2023-33733

Source: Read More

Previous ArticleImageMagick Flaw (CVE-2025-53101): Stack Buffer Overflow Allows Potential Remote Code Execution

Next Article CVE-2025-43856: OAuth2 Account Hijacking Flaw Found in Immich, a Popular Self-Hosted Photo Platform

Highlights

CVE-2025-6274 – WebAssembly wabt Resource Consumption Vulnerability

June 19, 2025

CVE ID : CVE-2025-6274

Published : June 19, 2025, 7:15 p.m. | 3 hours, 14 minutes ago

Description : A vulnerability was found in WebAssembly wabt up to 1.0.37. It has been classified as problematic. Affected is the function OnDataCount of the file src/interp/binary-reader-interp.cc. The manipulation leads to resource consumption. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. A similar issue reported during the same timeframe was disputed by the code maintainer because it might not affect “real world wasm programs”. Therefore, this entry might get disputed as well in the future.

Severity: 3.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Look out, Meta Ray-Bans! These AI glasses just raised over $1M in pre-orders in 3 days

Samsung ‘Galaxy Glasses’ powered by Android XR are reportedly on track to be unveiled this month

The M4 iPad Pro is discounted $100 as a last-minute Labor Day deal

Distribution Release: Linux From Scratch 12.4

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

August report 2025

Fake News Detection using Python Machine Learning (ML)

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Download Transcribe! for Windows

Microsoft Fixes CertificateServicesClient (CertEnroll) Error in Windows 11

HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

Hacker suspected of trying to cheat his way into university is arrested in Spain

ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics

CVE-2025-6550 – Elementor Pack Stored Cross-Site Scripting Vulnerability

CVE-2025-4774 – Elementor Premium Addons Stored Cross-Site Scripting Vulnerability

CVE-2025-6216 – Allegra Password Recovery Authentication Bypass Vulnerability

Pentests once a year? Nope. It’s time to build an offensive SOC

CVE-2025-6274 – WebAssembly wabt Resource Consumption Vulnerability

Is AI a job killer or creator? There’s a third option: Startup rocket fuel

CISA warns about actively exploited Broadcom, Commvault vulnerabilities

How I use VirtualBox to run any OS on my Mac – including Linux

HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

HazyBeacon: Novel Backdoor Uses AWS Lambda for Stealthy C2, Targets Govts

Related Posts