Experts Find Shared Codebase Linking Morpheus and HellCat Ransomware Payloads

January 23, 2025

An analysis of HellCat and Morpheus ransomware operations has revealed that affiliates associated with the respective cybercrime entities are using identical code for their ransomware payloads.
The findings come from SentinelOne, which analyzed artifacts uploaded to the VirusTotal malware scanning platform by the same submitter towards the end of December 2024.
“These two payload samples are

Source: Read More

Previous ArticleCustom Backdoor Exploiting Magic Packet Vulnerability in Juniper Routers

Next Article PlushDaemon compromises supply chain of Korean VPN service

Highlights

CVE-2024-8008 – “Apache [Vendor Name] Reflected Cross-Site Scripting Vulnerability”

June 2, 2025

CVE ID : CVE-2024-8008

Published : June 2, 2025, 5:15 p.m. | 2 hours, 9 minutes ago

Description : A reflected cross-site scripting (XSS) vulnerability exists in multiple [Vendor Name] products due to insufficient output encoding in error messages generated by the JDBC user store connection validation request. A malicious actor can inject a specially crafted payload into the request, causing the browser to execute arbitrary JavaScript in the context of the vulnerable page.

This vulnerability may allow UI manipulation, redirection to malicious websites, or data exfiltration from the browser. However, since all session-related sensitive cookies are protected with the httpOnly flag, session hijacking is not possible.

Severity: 5.2 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Future of React Native: Trends, Predictions & Innovations to Watch in 2025

April 21, 2025

NYU Researchers Propose Inter- & Intra-Modality Modeling (I2M2) for Multi-Modal Learning, Capturing both Inter-Modality and Intra-Modality Dependencies

June 18, 2024

Damask â€“ automatically set wallpaper images

July 2, 2024

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

The Alters: Release date, mechanics, and everything else you need to know

I’ve fallen hard for Starsand Island, a promising anime-style life sim bringing Ghibli vibes to Xbox and PC later this year

This new official Xbox 4TB storage card costs almost as much as the Xbox SeriesXitself

I may have found the ultimate monitor for conferencing and productivity, but it has a few weaknesses

May report 2025

May report 2025

Write more reliable JavaScript with optional chaining

Deploying a Scalable Next.js App on Vercel – A Step-by-Step Guide

The Alters: Release date, mechanics, and everything else you need to know

The Alters: Release date, mechanics, and everything else you need to know

I’ve fallen hard for Starsand Island, a promising anime-style life sim bringing Ghibli vibes to Xbox and PC later this year

This new official Xbox 4TB storage card costs almost as much as the Xbox SeriesXitself

Experts Find Shared Codebase Linking Morpheus and HellCat Ransomware Payloads

⚡ Weekly Recap: APT Intrusions, AI Malware, Zero-Click Exploits, Browser Hijacks and More

Exploitation Risk Grows for Critical Cisco Bug

Logdy – terminal logs in web browser

10-Step Guide to Closing Your Books at the End of the Year

Rubikverse – Online Rubik’s Cube Solvers, Simulators & Tutorials

CVE-2025-47240 – Apache Unverified Vulnerability

CVE-2024-8008 – “Apache [Vendor Name] Reflected Cross-Site Scripting Vulnerability”

The Future of React Native: Trends, Predictions & Innovations to Watch in 2025

NYU Researchers Propose Inter- & Intra-Modality Modeling (I2M2) for Multi-Modal Learning, Capturing both Inter-Modality and Intra-Modality Dependencies

Damask â€“ automatically set wallpaper images

Experts Find Shared Codebase Linking Morpheus and HellCat Ransomware Payloads

Related Posts