Web shells, a common type of post-exploitation tool that provides easy-to-use interface through which to issue commands to a compromised server, have become increasingly popular as attackers become ...

Tanya Candia is an international management expert, specializing for more than 25 years in information security strategy and communication for public- and private-sector organizations. Stealthy, ...

PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing. A suspected Chinese hacking group remained inside a ...

The attack methods being used to abuse the bug can successfully circumvent security measures, evading detection by security endpoints during scanning. A patched critical remote code execution (RCE) ...

Several threat groups are actively exploiting a critical vulnerability in Citrix networking products. Three weeks after Citrix released a patch for its NetScaler ADC and NetScaler Gateway, researchers ...

CISA is warning of new malware targeting vulnerable Ivanti products Multiple products, vulnerable to a 2024 flaw, are being targeted The malware can create web shells, harvest credentials, and more ...

A newly identified China-nexus hacking group infiltrated the network of an Asian telecommunications service provider and remained undetected for more than four years, according to cyber threat ...

A China-linked advanced threat group named Weaver Ant spent more than four years in the network of a telecommunications services provider, hiding traffic and infrastructure with the help of ...

Hackers used log poisoning and web shells to convert Nezha into a remote access tool targeting networks across East Asia. China-affiliated hackers have quietly turned a once-benign open-source network ...

A newly uncovered cyber campaign featuring the open-source tool Nezha has been observed targeting vulnerable web applications. Beginning in August 2025, Huntress analysts traced a sophisticated ...