ESET APT Activity Report Q4 2024–Q1 2025: Malware sharing, wipers and exploits

July 2, 2025

ESET experts discuss Sandworm’s new data wiper, UnsolicitedBooker’s relentless campaigns, attribution challenges amid tool-sharing, and other key findings from the latest APT Activity Report

Source: Read More

Previous ArticleESET Threat Report H1 2025: Key findings

Next Article Kubernetes Networking: Services, Ingress and DNS Explained

Highlights

CVE-2025-52937 – PointCloudLibrary PCL zlib Buffer Overflow

June 23, 2025

CVE ID : CVE-2025-52937

Published : June 23, 2025, 10:15 a.m. | 4 hours, 31 minutes ago

Description : Vulnerability in PointCloudLibrary PCL (surface/src/3rdparty/opennurbs modules). This vulnerability is associated with program files crc32.C.

This vulnerability is only relevant if the PCL version is older than 1.14.0 or the user specifically requests to not use the system zlib (WITH_SYSTEM_ZLIB=FALSE).

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

MVP Development for Startups: The Lean Approach

The AI productivity paradox in software engineering: Balancing efficiency and human skill retention

The impact of gray work on software development

CSS Intelligence: Speculating On The Future Of A Smarter Language

Hallucinated code, real threat: How slopsquatting targets AI-assisted development

Xbox is cancelling Rare’s ‘Everwild’ and ZeniMax’s new MMORPG IP as part of broader cuts — with ‘Perfect Dark’ impacted as well

Microsoft is closing down Xbox studio The Initiative, with Perfect Dark killed as well — joining Everwild and ZeniMax’s new IP, and other unannounced projects

No, Microsoft and Xbox’s Phil Spencer isn’t stepping down any time soon — here’s the truth

Everwild’s cancellation has me worried for one of my favorite dev teams and Xbox itself — It needs creative new games to thrive and refresh its identity

Trust but Verify: The Curious Case of AI Hallucinations

Trust but Verify: The Curious Case of AI Hallucinations

From Flow to Fabric: Connecting Power Automate to Microsoft Fabric

Flutter Web Hot Reload Has Landed – No More Refreshes!

Xbox is cancelling Rare’s ‘Everwild’ and ZeniMax’s new MMORPG IP as part of broader cuts — with ‘Perfect Dark’ impacted as well

Xbox is cancelling Rare’s ‘Everwild’ and ZeniMax’s new MMORPG IP as part of broader cuts — with ‘Perfect Dark’ impacted as well

Microsoft is closing down Xbox studio The Initiative, with Perfect Dark killed as well — joining Everwild and ZeniMax’s new IP, and other unannounced projects

No, Microsoft and Xbox’s Phil Spencer isn’t stepping down any time soon — here’s the truth

ESET APT Activity Report Q4 2024–Q1 2025: Malware sharing, wipers and exploits

Actively Exploited Google Chrome Zero-Day (CVE-2025-6554) Added to CISA’s KEV Catalog, PoC Available

CVE-2025-20309 affects Cisco Unified CM

CVE-2025-44203 – HotelDruid SQL Injection and DoS Vulnerability

Windows SMB Flaw (CVE-2025-33073): SYSTEM Privilege Escalation via Kerberos, PoC Available

CVE-2024-41446 – Alkacon OpenCMS Stored XSS Vulnerability

Why More Businesses Are Switching from Flutter to React Native in 2025🔄

CVE-2025-52937 – PointCloudLibrary PCL zlib Buffer Overflow

MVP Development for Startups: The Lean Approach

CVE-2025-46216 – Apache HTTP Server HTTP Request Smuggling

CVE-2025-4573 – Mattermost LDAP Group ID Attribute Injection Vulnerability

ESET APT Activity Report Q4 2024–Q1 2025: Malware sharing, wipers and exploits

Related Posts