KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

June 18, 2025

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

Unit 42 has uncovered two newly evolved variants of the KimJongRAT malware, one using traditional PE (Portable Executable) files and the other employing PowerShell-based scripts to infiltrate systems, …

Published Date:
Jun 18, 2025 (2 hours, 21 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2023-2530

Source: Read More

Previous ArticleCritical Linux Root Exploit Chain Discovered in PAM & UDisks, Affecting Major Distros

Next Article Trinper Backdoor Exploiting Chrome Zero-Day CVE-2025-2783

Highlights

CVE-2025-3999 – Seeyon Zhiyuan OA Web Application System Cross-Site Scripting Vulnerability

April 28, 2025

CVE ID : CVE-2025-3999

Published : April 28, 2025, 4:15 a.m. | 4 hours, 13 minutes ago

Description : A vulnerability, which was classified as problematic, has been found in Seeyon Zhiyuan OA Web Application System 8.1 SP2. This issue affects some unknown processing of the file seeyonoptSeeyonA8ApacheJetspeedwebappsseeyoncommonjsaddDatedate.jsp of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Representative Line: Brace Yourself

Beyond the Pilot: A Playbook for Enterprise-Scale Agentic AI

GitHub launches MCP Registry to provide central location for trusted servers

MongoDB brings Search and Vector Search to self-managed versions of database

Distribution Release: Security Onion 2.4.180

Distribution Release: Omarchy 3.0.1

Distribution Release: Mauna Linux 25

Distribution Release: SparkyLinux 2025.09

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

Shopping Portal using Python Django & MySQL

Perficient Earns Adobe’s Real-time CDP Specialization

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Review: Elecrow’s All-in-one Starter Kit for Pico 2

FOSS Weekly #25.38: GNOME 49 Release, KDE Drama, sudo vs sudo-rs, Local AI on Android and More Linux Stuff

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Microsoft’s Xbox Floral Collection 2025 adds fresh style to your gaming setup

CVE-2025-31987 – HCL Connections Denial of Service

Google boss says AI isn’t a winner-takes-all competition: “I think all of us are going to do well in this scenario”

Best early Labor Day phone deals 2025: Save up to $300 on Samsung, Google, and more

CVE-2025-3999 – Seeyon Zhiyuan OA Web Application System Cross-Site Scripting Vulnerability

FCC clears Surface Laptop 13″, Pro 12″ with Snapdragon, rounded design

CVE-2025-5459 – Puppet Enterprise Root Command Execution Vulnerability

5 reasons I turn to ChatGPT every day – from faster research to replacing Siri

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

Related Posts