ESET researchers uncovered ongoing and advancing operations by the China-linked Advanced Persistent Threat group, FamousSparrow. Known for its distinctive SparrowDoor malware, the group’s latest campaign targets US financial trade groups, a Mexican research institute, and a Honduran government body. For the first time, FamousSparrow was reported using a new backdoor, ShadowPad, along with two new SparrowDoor versions, believed to be part of cyber espionage activities.
Windows Active Directory Domain Vulnerability Let Attackers Escalate Privileges
Microsoft revealed a critical security vulnerability in Active Directory Domain Services (CVE-2025-29810) that could allow attackers to elevate privileges to system level. Patched in April
