A severe vulnerability in the widely-used WooCommerce Payments plugin is under rampant attack by cybercriminals. They are exploiting this security loophole to gain access rights of all users, notably administrators, on WordPress sites that are susceptible to this exploitation. About…
The breach came to light on June 27, just one week after the hackers infiltrated JumpCloud’s systems through a well-crafted spear-phishing attack. While no immediate evidence of customer impact was found, the company proactively decided to rotate credentials and rebuild…
Colorado State University (CSU) recently confirmed that it fell victim to a data breach orchestrated by the Clop ransomware operation. This Data Breach resulted in the theft of sensitive personal information belonging to current and former students and employees. The…
In a surprising turn of events, the first half of 2023 has seen a threefold surge in USB Drive Malware. This resurgence of an old method indicates that cyber attackers are resorting to proven techniques. A recent Mandiant report highlights…
A notorious Chinese cyber group, recognized as Storm-0558, has made an alarming breach in the email systems of a multitude of global institutions. Microsoft has confirmed that the target of the hackers was not limited to U.S. government bodies but…
Apple recently launched a crucial round of Rapid Security Response (RSR) updates to mitigate a new zero-day flaw exploited in attacks and impacted fully-patched iPhones, Macs, and iPads. The Intricacies of the Vulnerability In advisories for iOS and macOS, Apple…
Security researchers have unveiled a new malicious campaign, allegedly conducted by the Charming Kitten APT group. The campaign, which kicked off in May, features a unique piece of malware dubbed “NokNok,” specifically designed to infiltrate macOS systems. The group, also…
In a recent revelation, security experts have exposed two malicious file management applications on Google Play that have collected user data excessively. This shocking breach of privacy goes beyond what is required for the stated functionality of the applications. These…
Google has recently released monthly security updates for the Android operating system, providing fixes for 46 vulnerabilities. Notably, three of these issues are believed to be actively exploited in real-world scenarios, posing a potential threat to Android users. Vulnerabilities Under…
The Swedish Privacy Protection Authority, known as the Integritetsskyddsmyndigheten (IMY), has recently issued penalties of 12.3 million SEK, which equates to approximately $1.1 million or €1 million. This disciplinary action is towards two organizations, while two others are given warnings.…
