Cybersecurity researchers have uncovered three malicious packages in the npm registry that masquerade as a popular Telegram bot library but harbor SSH backdoors and data exfiltration capabilities.
The packages in question are listed below –
node-telegram-utils (132 downloads)
node-telegram-bots-api (82 downloads)
node-telegram-util (73 downloads)
According to supply chain
With incidences of ransomware on the rise, nobody should even be thinking that an attack is something that couldn’t happen to them, let alone speak those words into existence. And…
The post Have The Last Word Against Ransomware with Immutable Backup appeared first on Cyber Defense Magazine.
1.1 Emerging Cybersecurity Technologies As we move into 2025, AI and machine learning are expected to play an even larger role in cybersecurity. These technologies will be used to enhance…
The post Multi-channel Secure Communication appeared first on Cyber Defense Magazine.
ASUS has disclosed a critical security flaw impacting routers with AiCloud enabled that could permit remote attackers to perform unauthorized execution of functions on susceptible devices.
The vulnerability, tracked as CVE-2025-2492, has a CVSS score of 9.2 out of a maximum of 10.0.
“An improper authentication control vulnerability exists in certain ASUS router firmware series,”
![[webapps] FoxCMS 1.2.5 – Remote Code Execution (RCE)](https://i0.wp.com/deeteknoloji.com/wp-content/uploads/2025/04/spider-orange.png?resize=144%2C144&ssl=1)
FoxCMS 1.2.5 – Remote Code Execution (RCE)