A severe vulnerability in the widely-used WooCommerce Payments plugin is under rampant attack by cybercriminals. They are exploiting this security loophole to gain access rights of all users, notably administrators, on WordPress sites that are susceptible to this exploitation. About…
Latest posts - Page 3
JumpCloud Discloses Breach by State-Backed APT Hacking Group
The breach came to light on June 27, just one week after the hackers infiltrated JumpCloud’s systems through a well-crafted spear-phishing attack. While no immediate evidence of customer impact was found, the company proactively decided to rotate credentials and rebuild…
Colorado State University Hit by Data Breach, Students, and Staff Affected
Colorado State University (CSU) recently confirmed that it fell victim to a data breach orchestrated by the Clop ransomware operation. This Data Breach resulted in the theft of sensitive personal information belonging to current and former students and employees. The…
The Surge in USB Drive Malware Threats in 2023: An Alarming Trend
In a surprising turn of events, the first half of 2023 has seen a threefold surge in USB Drive Malware. This resurgence of an old method indicates that cyber attackers are resorting to proven techniques. A recent Mandiant report highlights…
Chinese Intruders Storm-0558 Violate U.S. Government Email Systems
A notorious Chinese cyber group, recognized as Storm-0558, has made an alarming breach in the email systems of a multitude of global institutions. Microsoft has confirmed that the target of the hackers was not limited to U.S. government bodies but…
Apple Rolls Out Urgent Security Update to Counter Actively Exploited Zero-Day Flaw
Apple recently launched a crucial round of Rapid Security Response (RSR) updates to mitigate a new zero-day flaw exploited in attacks and impacted fully-patched iPhones, Macs, and iPads. The Intricacies of the Vulnerability In advisories for iOS and macOS, Apple…
The ‘Charming Kitten’ Cyber Threat Evolves with the Introduction of NokNok Malware for macOS
Security researchers have unveiled a new malicious campaign, allegedly conducted by the Charming Kitten APT group. The campaign, which kicked off in May, features a unique piece of malware dubbed “NokNok,” specifically designed to infiltrate macOS systems. The group, also…
Privacy Invasion: Apps Boasting 1.5M Downloads on Google Play Channel Your Data to China
In a recent revelation, security experts have exposed two malicious file management applications on Google Play that have collected user data excessively. This shocking breach of privacy goes beyond what is required for the stated functionality of the applications. These…
Android July Security Updates Address Actively Exploited Bugs
Google has recently released monthly security updates for the Android operating system, providing fixes for 46 vulnerabilities. Notably, three of these issues are believed to be actively exploited in real-world scenarios, posing a potential threat to Android users. Vulnerabilities Under…
Swedish Companies Fined Over Data Transfer to US via Google Analytics
The Swedish Privacy Protection Authority, known as the Integritetsskyddsmyndigheten (IMY), has recently issued penalties of 12.3 million SEK, which equates to approximately $1.1 million or €1 million. This disciplinary action is towards two organizations, while two others are given warnings.…