A U.S. federal government commission associated with international rights has been targeted by a backdoor that reportedly compromised its internal network in...
Cybersecurity researchers have discovered an entirely new attack vector that enables adversaries to exploit the Log4Shell vulnerability on servers locally by using...
The issues with Log4j continued to stack up as the Apache Software Foundation (ASF) on Friday rolled out yet another patch —...
Industrial and government organizations, including enterprises in the military-industrial complex and research laboratories, are the targets of a new malware botnet dubbed...
Cryptocurrency users in Ethiopia, Nigeria, India, Guatemala, and the Philippines are being targeted by a new variant of the Phorpiex botnet called...
A new JavaScript-based remote access Trojan (RAT) propagated via a social engineering campaign has been observed employing sneaky “fileless” techniques as part...
Europol, the European Union’s premier law enforcement agency, has announced the arrest of a third Romanian national for his role as a...
Apple on Monday released updates to iOS, macOS, tvOS, and watchOS with security patches for multiple vulnerabilities, including a remote jailbreak exploit...
Google has rolled out fixes for five security vulnerabilities in its Chrome web browser, including one which it says is being exploited...
A previously undocumented, financially motivated threat group has been connected to a string of data theft and extortion attacks on over 40...
Infection chains associated with the multi-purpose Qakbot malware have been broken down into “distinct building blocks,” an effort that Microsoft said will...
Threat actors are actively weaponizing unpatched servers affected by the newly identified “Log4Shell” vulnerability in Log4j to install cryptocurrency miners, Cobalt Strike,...
The Apache Software Foundation has released fixes to contain an actively exploited zero-day vulnerability affecting the widely-used Apache Log4j Java-based logging library...
As many as 1.6 million WordPress sites have been targeted by an active large-scale attack campaign originating from 16,000 IP addresses by...
At least 300,000 IP addresses associated with MikroTik devices have been found vulnerable to multiple remotely exploitable security vulnerabilities that have since...
At least 17 malware-laced packages have been discovered on the NPM package Registry, adding to a recent barrage of malicious software hosted...
The operators of TrickBot malware have infected an estimated 140,000 victims across 149 countries a little over a year after attempts were...
Microsoft on Monday announced the seizure of 42 domains used by a China-based cyber espionage group that set its sights on organizations...
Cryptocurrency trading platform BitMart has disclosed a “large-scale security breach” that it blamed on a stolen private key, resulting in the theft...
A series of malicious campaigns have been leveraging fake installers of popular apps and games such as Viber, WeChat, NoxPlayer, and Battlefield...
E-commerce platforms in the U.S., Germany, and France have come under attack from a new form of malware that targets Nginx servers...