EARTHWORM

The Latest

Fake CAPTCHA Pages Exploit Clicks to Send Costly International Texts

Fake CAPTCHA Scam Abuses Verification Clicks to Send Costly International Texts

New ClickFix attack Hides in Native Windows Tools to Reduce Detection Risk

New ClickFix attack Hides in Native Windows Tools to Reduce Detection Risk

TeamPCP Hijacks Bitwarden CLI, Uses Dependabot to Deploy Shai-Hulud Malware

TeamPCP Hijacks Bitwarden CLI, Uses Dependabot to Deploy Shai-Hulud Malware

French Police Detain Hacker HexDex for Targeting Sports Groups and Ministry Systems

French Police Arrest HexDex Hacker Over Mass Data Theft and Leaks

Zero-Day in Sitecore Exploited to Deploy WEEPSTEEL Malware

Read More

2 minute read

Security

Zero-Day in Sitecore Exploited to Deploy WEEPSTEEL Malware

Hackers exploit a Sitecore zero-day (CVE-2025-53690) to deploy WEEPSTEEL Malware via ViewState attacks, enabling Remote Code Execution (RCE).

September 8, 2025