SocGholish Malware Spread via Ad Tools; Delivers Access to LockBit, Evil Corp, and Others

August 7, 2025

The threat actors behind the SocGholish malware have been observed leveraging Traffic Distribution Systems (TDSs) like Parrot TDS and Keitaro TDS to filter and redirect unsuspecting users to sketchy content.
“The core of their operation is a sophisticated Malware-as-a-Service (MaaS) model, where infected systems are sold as initial access points to other cybercriminal organizations,” Silent Push

Source: Read More

Previous ArticleAutism Spectrum Disorder (ASD) Test – ASDTest.org

Next Article Webinar: How to Stop Python Supply Chain Attacks—and the Expert Tools You Need

Highlights

CVE-2025-2506 – EDB pglogical Replication Connection Verification Bypass

May 22, 2025

CVE ID : CVE-2025-2506

Published : May 22, 2025, 4:15 p.m. | 31 minutes ago

Description : When pglogical attempts to replicate data, it does not verify it is using a replication connection, which means a user with CONNECT access to a database configured for replication can execute the pglogical command to obtain read access to replicated tables. When pglogical runs it should verify it is running on a replication connection but does not perform this check. This vulnerability was introduced in the pglogical 3.x codebase, which is proprietary to EDB. The same code base has been integrated into BDR/PGD 4 and 5.
To exploit the vulnerability the attacker needs at least CONNECT permissions to a database configured for replication and must understand a number of pglogical3/BDR specific commands and be able to decode the binary protocol.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Error’d: You Talkin’ to Me?

The Psychology Of Trust In AI: A Guide To Measuring And Designing For User Confidence

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)

Report: The major factors driving employee disengagement in 2025

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

@ts-ignore is almost always the worst option

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

Student Performance Prediction System using Python Machine Learning (ML)

DistroWatch Weekly, Issue 1140

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Hyprland Made Easy: Preconfigured Beautiful Distros

SocGholish Malware Spread via Ad Tools; Delivers Access to LockBit, Evil Corp, and Others

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

AlphaQubit tackles one of quantum computing’s biggest challenges

Getting Creative With Images in Long-Form Content

Low-Code and No-Code Platforms: Revolutionizing Application Development

From private to public: How a United Nations organization open sourced its tech in four steps

CVE-2025-2506 – EDB pglogical Replication Connection Verification Bypass

How I Fixed Core Web Vitals and Traffic Jumped – Some Tips

Beats’ new chargers are optimized for iPhone and Android – and they’re more stylish than Apple’s

CVE-2025-46762 – Apache Parquet Parquet-avro Remote Code Execution Vulnerability

SocGholish Malware Spread via Ad Tools; Delivers Access to LockBit, Evil Corp, and Others

Related Posts