PupkinStealer – New .NET Info-Stealer
Analysis of PupkinStealer, a .NET Telegram info-stealer that steals passwords, sessions & files. Includes IOCs and quick mitigation tips.| ZeroDay Labs
CVE-2025-31324: Pre-Auth RCE in SAP NetWeaver Visual Composer – Full Exploit Walk-Through & Defense Guide CVE-2025-31324 is a CVSS 10.0 remote-code-execution flaw in the Visual Composer Metadata component of SAP NetWeaver AS Java 7.00 → 7.50. Unauthenticated attackers can upload arbitrary ZIP/WAR archives, drop a web-shell, and run commands as <SID>adm (often mapped to SYSTEM). […] The post CVE-2025-31324: Pre-Auth RCE in SAP NetWeaver Visual Composer – Full Exploit Walk-Through & Def...| ZeroDay Labs
Analysis of PupkinStealer, a .NET Telegram info-stealer that steals passwords, sessions & files. Includes IOCs and quick mitigation tips.| ZeroDay Labs
A trusted RVTools installer was briefly hijacked to deliver the Bumblebee malware loader through a trojanized DLL. Discover how the compromise was detected, investigated, mitigated, and what it means for software supply chain security.| ZeroDay Labs
