Meta Mirage, a new global phishing threat, has been discovered. Cybersecurity researchers at CTM360 revealed that it targets businesses using Meta’s Business Suite and impersonates official Meta communications to hijack high-value accounts. Over 14,000 malicious URLs have been identified, 78% of which were not blocked by browsers when reported. Cybercriminals host fake pages on trusted cloud platforms and use fake alerts to trick users. They use credential and cookie theft methods to access accounts. CTM360 recommends using only official devices, separate business emails, enabling 2FA, regularly reviewing account security, and training staff to recognize suspicious messages.
VMware ESXi, Firefox, Red Hat Linux & SharePoint 0-Day Vulnerabilities Exploited
During Pwn2Own Berlin 2025, researchers exposed critical zero-day vulnerabilities in major platforms like VMware ESXi and Microsoft SharePoint, earning $435,000 in bounties. Notably, Nguyen Hoang
