Researchers have uncovered a previously unknown malicious Internet Information Services (IIS) module, dubbed Owowa, that steals credentials when users log… Read More
Customers of Chase, Wells Fargo, Bank of America, and Capital One, along with nearly 400 other financial firms, are being… Read More
To file a complaint with the cybercriminal court in one large underground forum, the user is required to open a… Read More
Researchers from Accenture Security have been tracking a group that calls itself “Karakurt,” which means “black wolf” in Turkish and… Read More
The plugin “Variation Swatches for WooCommerce,” installed across 80,000 WordPress-powered retail sites, contains a stored XSS security vulnerability that could… Read More
A threat actor previously tied to the Thieflock ransomware operation may now be using the emerging Yanluowang ransomware in a… Read More
The GoDaddy breach affecting 1.2 million customers has widened – it turns out that various subsidiaries that resell GoDaddy Managed… Read More
Kaspersky’s researchers observed various lures aimed at targets, depending on their current streaming subscription status. Fake sign-up pages were used… Read More
Researchers are raising the alarm over a phishing email kicking off a Halloween-themed MICROP ransomware offensive, which they observed making… Read More
The campaign appears to be targeting only employees working in the Middle East as “a single campaign” in a series… Read More
Researchers have developed an exploit to gain remote code execution via a massive vulnerability in a security appliance from Palo… Read More
Researchers have discovered 14 critical vulnerabilities in a popular program used in embedded Linux apps, all of which allow for… Read More
The alert named notorious ransomware groups, including Bitpaymer, Conti, Cuba, REvil, Ryuk, and Snatch, which have launched successful attacks on… Read More
According to researchers at Armorblox, they spotted one such campaign lobbed at an unnamed global communications company, with nearly a… Read More
A new Magecart threat actor is stealing people’s payment card info from their browsers using a digital skimmer that uses… Read More
NSO Group – the Israeli-based maker of the infamous, military-grade Pegasus spyware that’s been linked to cyberattacks against activists and… Read More