A new remote access trojan (RAT) called NonEuclid has covertly infiltrated Windows systems, demonstrating antivirus evasion, anti-detection, privilege escalation, and ransomware encryption features. Research by Cyfirma reveals it can bypass Windows defenses and encrypt .TXT, .CSV, and .PHP files. Its widespread promotion on underground platforms indicates its appeal to cybercriminals and the challenges in combating it.

Ivanti patches serious Connect Secure flaw
Ivanti has patched a critical flaw in its Connect Secure VPN reportedly exploited by Chinese state-backed actors. Identified as CVE-2025-22457, the buffer overflow vulnerability was