In an effort to stop hackers and emphasize America’s tight ties with Kyiv, the U.S. military publicly disclosed a number of malware indications in response to a campaign of cyberattacks against Ukraine. Twenty novel indicators of malware infections were released…
A phishing email was intercepted by Fortinet’s FortiGuard Labs as part of a phishing campaign that propagated a new QakBot variant. Since 2007, security experts have discovered and studied QakBot, a banking Trojan horse also known as QBot, QuackBot, or…
Windows, Linux, and ESXi systems can all be used to encrypt devices that are infected with the Luna ransomware family. Luna ransomware was found by Kaspersky security researchers thanks to a dark web ransomware forum ad picked up by the…
Two distinct efforts targeting MenuDrive, Harbortouch, and InTouchPOS services resulted in the compromising of 300 restaurants and at least 50,000 credit cards. Researchers have discovered that Magecart operations have compromised tens of thousands of cards so far by skimming the…
According to one security expert, e-commerce websites generally struggle to keep their sites secure and frequently include weak code from supply-chain partners or third parties that is simple for hackers to infiltrate and may have unintended consequences. Kim DeCarlis, chief…
Security experts have identified three Android malware families that have infiltrated the Google Play Store and are concealing their harmful payloads inside several ostensibly innocent applications. Users who downloaded the malicious apps experienced data theft, social media account hijacking, SMS…
The Knauf Group has disclosed that it was the victim of a cyberattack that interfered with its business operations and compelled its worldwide IT team to shut down its IT systems in order to contain the situation. On the evening…
Security experts have revealed previously unknown spyware that targets the Apple macOS operating system. The malware, known as CloudMensis by the Slovak cybersecurity company ESET, is rumoured to only use open-source cloud storage platforms like pCloud, Yandex Disk, and Dropbox…
The websites of the federal government of Albania were taken offline by a “massive cyber-attack.” The federal government claimed that the tragedy was the result of a coordinated “strike from overseas” in a statement that was distributed to local information…
A critical prototype pollution vulnerability in Blitz.js, a JavaScript online application framework, has been patched to prevent remote code execution (RCE) on Node.js servers. A specific kind of JavaScript flaw known as prototype pollution enables attackers to manipulate an application’s…
