Breaking News – Cyber Threats (last 6h)
Generated: 2025-12-08 02:00 PST
- Sneeit WordPress RCE Exploited in the Wild While ICTBroadcast Bug Fuels Frost Botnet Attacks
The Hacker News • 2025-12-08 01:15 • thehackernews.com
A critical security flaw in the Sneeit Framework plugin for WordPress is being actively exploited in the wild, per data from Wordfence.
The remote code execution vulnerability in question is CVE-2025-6389 (CVSS score: 9.8), which affects all versions of the plugin prior to and including 8.3. It has been patched in version 8.4, released on August 5, 2025. The plugin has more than 1,700 active
https://thehackernews.com/2025/12/sneeit-wordpress-rce-exploited-in-wild.html - MuddyWater Deploys UDPGangster Backdoor in Targeted Turkey-Israel-Azerbaijan Campaign
The Hacker News • 2025-12-07 22:46 • thehackernews.com
The Iranian hacking group known as MuddyWater has been observed leveraging a new backdoor dubbed UDPGangster that uses the User Datagram Protocol (UDP) for command-and-control (C2) purposes.
The cyber espionage activity targeted users in Turkey, Israel, and Azerbaijan, according to a report from Fortinet FortiGuard Labs.
“This malware enables remote control of compromised systems by allowing
https://thehackernews.com/2025/12/muddywater-deploys-udpgangster-backdoor.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
