MatrixPDF toolkit turning PDFs into phishing and malware lures

New MatrixPDF Attack Weaponizes PDFs for Phishing Campaigns

Researchers have uncovered a new cybercriminal toolkit called MatrixPDF, designed to transform normal PDF files into weapons for phishing and malware delivery. This toolkit lowers the barrier for attackers. In fact, it provides ready made templates that let even inexperienced hackers craft PDF lures capable of bypassing security filters. As a result, phishing campaigns become…

Read More
VMware Tools and Aria zero-day exploit granting root access

VMware Tools & Aria Zero-Day Exploited for Root Access

Security researchers have identified a critical zero-day flaw (CVE-2025-41244) affecting VMware Tools and VMware Aria. The bug enables local privilege escalation to root, a dangerous step in potential exploitation chains. The issue lies in service discovery mechanisms built into VMware, which allow guest and management systems to interact. Attackers are abusing this trust to escalate…

Read More