Independent cybersecurity experts Noam Rotem and Ran Locar have uncovered and reported to vpnMentor a cyber operation that exploited vulnerabilities in public sites, leading to unauthorized access to sensitive customer data, infrastructure credentials, and proprietary source code. This report
Latest News: Cybersecurity
A South Korean CEO and five employees were arrested for manufacturing and exporting satellite receivers equipped with Distributed Denial of Service (DDoS) functionalities. This action violated the country’s Act on Promotion of Information and Communications Network Utilization and Information
A new phishing-as-a-service (PhaaS) platform, known as Rockstar 2FA, is enabling adversary-in-the-middle (AiTM) attacks to steal Microsoft 365 credentials and bypass multifactor authentication (MFA). Specifically, AiTM phishing is a technique that uses specialized tools to allow a threat actor to
A major cyberattack has disrupted operations at the Wirral University Teaching Hospital (part of the NHS Foundation Trust), forcing the postponement of surgeries, outpatient appointments, and other procedures. The WUTH is a healthcare organization which operates Arrowe Park, Clatterbridge, and
A North Korea-linked hacking group, Sapphire Sleet, has stolen more than $10 million in cryptocurrency over six months through LinkedIn scams and AI-driven malware. The group, active since 2020, exploits fake profiles to execute sophisticated social engineering campaigns targeting professionals
BlueSky, the decentralized microblogging platform often seen as a competitor to Twitter, has recently surpassed 20 million users. This milestone, however, has been met with a surge in challenges, including the rise of crypto scams and the proliferation of fake accounts. As users migrate from
A severe vulnerability affecting the Really Simple Security WordPress plugin, previously Really Simple SSL, has put four million websites at risk of potential takeover. Discovered on November 6, 2024, by Wordfence researchers, the flaw allows attackers to bypass authentication and gain
A new phishing campaign has been exposed involving a fileless variant of the Remcos RAT malware, which is being spread via an exploit in Microsoft Excel. Cybersecurity experts at Fortinet recently highlighted the methods used by the attackers. The attack begins with a phishing email disguised as
In a recent advisory, the FBI warned US-based tech companies about a rising cybercriminal tactic involving fraudulent “emergency data requests” (EDRs), aimed at accessing sensitive user data without the typical legal protocols. The advisory, first reported by PCMag, highlights how hackers are
Windows gamers are facing a significant cyber threat thanks to the Winos4.0 malware framework, which is spreading via malicious game-related applications. Fortinet’s recent report reveals that this advanced malware, hidden within apps like speed boosters and game optimization tools, grants