Researchers from Accenture Security have been tracking a group that calls itself “Karakurt,” which means “black wolf” in Turkish and… Read More
The plugin “Variation Swatches for WooCommerce,” installed across 80,000 WordPress-powered retail sites, contains a stored XSS security vulnerability that could… Read More
A threat actor previously tied to the Thieflock ransomware operation may now be using the emerging Yanluowang ransomware in a… Read More
The GoDaddy breach affecting 1.2 million customers has widened – it turns out that various subsidiaries that resell GoDaddy Managed… Read More
Kaspersky’s researchers observed various lures aimed at targets, depending on their current streaming subscription status. Fake sign-up pages were used… Read More
Over the past 12 months, the style and severity of APT threats has continued to evolve. Despite their constantly changing… Read More
Researchers are raising the alarm over a phishing email kicking off a Halloween-themed MICROP ransomware offensive, which they observed making… Read More
The campaign appears to be targeting only employees working in the Middle East as “a single campaign” in a series… Read More
Researchers have developed an exploit to gain remote code execution via a massive vulnerability in a security appliance from Palo… Read More
Researchers have discovered 14 critical vulnerabilities in a popular program used in embedded Linux apps, all of which allow for… Read More
The alert named notorious ransomware groups, including Bitpaymer, Conti, Cuba, REvil, Ryuk, and Snatch, which have launched successful attacks on… Read More
According to researchers at Armorblox, they spotted one such campaign lobbed at an unnamed global communications company, with nearly a… Read More
A new Magecart threat actor is stealing people’s payment card info from their browsers using a digital skimmer that uses… Read More
NSO Group – the Israeli-based maker of the infamous, military-grade Pegasus spyware that’s been linked to cyberattacks against activists and… Read More
In spite of coming from sender addresses such as noreply@sm.kaspersky.com, nobody at Kaspersky sent the phishing emails, the security company… Read More
Malware delivered via a compromised website on Chrome browsers can bypass User Account Controls to infect systems and steal sensitive… Read More