A global Magecart attack has wreaked havoc on numerous eCommerce websites, compromising thousands of customers' personal data and credit card information. The sophisticated cybercriminal group responsible for the attack has been injecting malicious scripts into legitimate websites, including
Latest News: Cybersecurity
A team of researchers from Varonis Threat Labs recently made a significant discovery regarding certain Salesforce sites. These sites, known as Salesforce Ghost Sites, were once active sites that were left unattended. By exploiting vulnerabilities in the host headers of these websites, malicious
Automattic, the company responsible for the open-source WordPress content management system, has initiated the mandatory installation of a security patch on numerous websites. This action aims to rectify a critical vulnerability found in the Jetpack plugin, which could potentially give a threat
Cybersecurity researchers at Cisco Talos and the Citizen Lab have delved into the inner workings of the notorious Predator Android spyware, shedding light on its sophisticated surveillance capabilities. Developed by the Israeli company Intellexa (formerly known as Cytrox), Predator records phone
Researchers at SentinelLabs published a report on the morning of May 25th that identified a sizable malicious campaign targeting users of Portuguese financial institutions. The campaign has been dubbed “Operation Magalenha”. Attackers are able to steal credentials and exfiltrate personal
A significant cybercrime enterprise known as the "Lemon Group" has been discovered, pre-installing sophisticated malware on potentially 9 million Android-based smartphones, watches, TVs, and TV boxes worldwide. The group utilizes “Guerrilla” malware to perform a range of malicious activities,
Matveev, aliases "Wazawaka" and “Boriselcin”, faces criminal charges in New Jersey and Washington, D.C. for developing and deploying ransomware variants, including LockBit, Babuk, and Hive. U.S. authorities have added him to the Treasury Department's Specially Designated Nationals list, attributing
Spanish authorities have arrested 40 individuals, including 15 members of an organized crime gang known as Trinitarians and two hackers, for their alleged involvement in a cybercrime operation that involved bank fraud, identity theft, money laundering, and forgery. The group is believed to have
Facebook has reportedly disabled several verified accounts after hackers breached them and used them to spread malware through ads. The hackers used the accounts to target page managers and advertising professionals, promising a more professional and secure tool while sharing a malicious download
Microsoft revealed over the weekend that financially motivated actors are not the only ones exploiting a critical vulnerability in PaperCut print management software. Iranian state-sponsored threat actors Mango Sandstorm (also referred to as Mercury or Muddywater) and Mint Sandstorm (also known as