A security researcher has discovered a critical vulnerability in TP-Link’s TL-WR940N router that could potentially allow for remote code execution via buffer overflow exploitation. This cybersecurity issue, documented as CVE-2024-54887 and impacting hardware versions 3 and 4, was identified using a variety of complex techniques and analyses. TP-Link acknowledged the vulnerability but stated that the affected versions are no longer being updated due to their end-of-life status.

New KoiLoader Abuses Powershell Scripts to Deliver Malicious Payload
Researchers have uncovered a new strain of the advanced KoiLoader malware, believed to be distributed through phishing emails posing as bank statements. The malware employs