Analyzing Unsolicited Internet Traffic: Measuring IoT Security Threats Via Network Telescopes

Network telescopes serve as a critical passive monitoring tool for capturing unsolicited Internet traffic, providing insights into global scanning and reconnaissance behavior. This study analyzes a 10-day dataset during January 2025 consisting of approximately 22 million packets collected by the...

Internet-Scale Measurement of React2Shell Exploitation Using an Active Network Telescope

The increasing adoption of server-side component-based web frameworks has introduced new application-layer attack surfaces that remain insufficiently understood at Internet scale. On 3 December 2025, a critical remote code execution vulnerability CVE-2025-55182 in React Server Components, referre...

A Longitudinal Measurement Study of Log4Shell Exploitation from an Active Network Telescope

The disclosure of the Log4Shell vulnerability in December 2021 led to an unprecedented wave of global scanning and exploitation activity. A recent study provided important initial insights, but was largely limited in duration and geography, focusing primarily on European and U.S. network telescop...

Holoscope: Open and Lightweight Distributed Telescope and Honeypot Platform

The complexity and scale of Internet attacks call for distributed, cooperative observatories capable of monitoring malicious traffic across diverse networks. Holoscope is a lightweight, cloud-native platform designed to simplify the deployment and management of distributed telescope passive and...

EUVD-2014-5042

Malware in sbrugna...

MAL-2025-17627 Malicious code in cosmos-telescope-test (npm)

The package cosmos-telescope-test was found to contain malicious code...

Malicious code in cosmos-telescope-test (npm)

The package cosmos-telescope-test was found to contain malicious code...

Laravel Telescope Unrestricted Access

Laravel Telescope provides an overview of requests entering your application, exceptions, log entries, database queries, pending tasks, mail, notifications, cache operations, scheduled tasks, variable flushes and much more. If an attacker gains access to this dashboard, it would be possible to...

[SECURITY] Fedora 38 Update: phd2-2.6.11^dev4^20230212a205f63-1.fc38

PHD2 is telescope guiding software that simplifies the process of tracking a guide star, letting you concentrate on other aspects of deep-sky imaging or spectroscopy...

Fedora: Security Advisory for phd2 (FEDORA-2023-a5e10b188a)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

A week in security (August 29 - September 4)

Last week on Malwarebytes Labs: Twilio data breach turns out to be more elaborate than suspected Playing Doom on a John Deere tractor with Sick Codes: Lock and Code S03E18 Chromium browsers can write to the system clipboard without your permission British Airways customers targeted in lost luggag...

Hackers spreading malware through images taken by James Webb Space Telescope

By Waqas Researchers have identified a new Golang-based malware campaign leveraging deep field images from the James Webb Space Telescope to deploy malware on infected devices. This is a post from HackRead.com Read the original post: Hackers spreading malware through images taken by James Webb...

James Webb telescope images used to hide malware

A rather unique approach to spread malware using the popularity of the James Webb telescope images has been identified by the Securonix threat research team. The malware is being spread by a phishing campaign that includes a Microsoft Office attachment. Similar to traditional Office macros, the...

Malicious code in telescope-avatar (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61c891241b5977dea6c333b2917e17341a4666161a9d8f29ebd986b086caa615 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-6449 Malicious code in telescope-avatar (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61c891241b5977dea6c333b2917e17341a4666161a9d8f29ebd986b086caa615 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Sony SRS-XB33 安全漏洞

SONY Sony SRS-XB33 is a smart speaker from Sony Japan. A security vulnerability exists in the Sony SRS-XB33 and SRS-XB43, which arises from a problem with the device powering the audio output device under certain usage scenarios. The vulnerability can be exploited by an attacker to recover voice...

Logitech Z120 安全漏洞

The Logitech Z120 is a compact stereo speaker from Logitech Switzerland. A security vulnerability exists in the Logitech Z120 and S120 that stems from a problem with the device powering the audio output device under certain usage scenarios. The vulnerability can be exploited by an attacker to...

Pebble 安全漏洞

Pebble is a customizable watch from the American company Pebble. Pebble suffers from a security vulnerability that stems from the device's ability to power an audio output device under certain specified usage scenarios. The vulnerability can be exploited by an attacker to recover voice signals fr...

Raspberry Pi 3 module B+ 安全漏洞

The Raspberry Pi 3 module B+ is an embedded system development board. A security vulnerability exists in the Raspberry Pi 3 module B+ and 4 B. The vulnerability stems from a problem with the device powering an audio output device under certain usage scenarios. The vulnerability can be exploited b...

CVE-2021-38365

Winner aka ToneWinner desktop speakers through 2021-08-09 allow remote attackers to recover speech signals from the power-indicator LED via a telescope and an electro-optical sensor, aka a "Glowworm" attack...