Cybercriminals are utilizing torrents to distribute pirated versions of Windows 10 that hide cryptocurrency hijackers within the EFI (Extensible Firmware Interface) partitions. This technique…
attackers
Stripe Payment WordPress Plugin Bug Exposes Customer Order Details
A critical bug has been discovered in the WooCommerce Stripe Gateway plugin for WordPress. It expose sensitive customer order details to unauthorize users. The…
Japanese Pharma Giant Eisai Reveals Ransomware Attack
Japanese pharmaceutical company Eisai recently disclosed a ransomware incident that significantly impacted its operations. Attackers successfully encrypted some of the company’s servers, causing disruptions…
Over 60,000 Android Apps Discovered Secretly Installing Adware for Six Months
In a startling revelation, Romanian cybersecurity firm Bitdefender has uncover a massive adware campaign. It has gone undetected for the past six months. The…
Microsoft Discovers macOS vulnerability Allowing Hackers to Bypass SIP Root Restrictions
Microsoft’s security researchers have uncovered a critical vulnerability in macOS. It enables hackers with root privileges to bypass System Integrity Protection (SIP). By exploiting…
Encrypted RPMSG Messages Exploited in Targeted Microsoft 365 Phishing Attacks
In a disturbing development, cyber attackers have devised a new method to carry out targeted phishing attacks. It is via using encrypted RPMSG attachments…
Ongoing XSS Attacks Targeting WordPress
An ongoing series of attacks is currently targeting a vulnerability known as Unauthenticated Stored Cross-Site Scripting (XSS) in a popular WordPress cookie consent plugin…
Lemon Group Pre-Installs Malware on Millions of Android Devices Introduction
A cybercrime group known as the “Lemon Group” has recently come into the spotlight. It is for pre-installing malware named ‘Guerilla’ on a staggering…
Veeam Backup Servers Targeted by Threat Actors Accompanied by Ransomware Gangs
At least one group of threat actors, known to operate with various high-profile ransomware gangs, has targeted Veeam backup servers. The attackers took advantage…
Google Ad Campaign Delivers Bumblebee Malware
A new malware campaign utilizing Google ads and SEO poisoning has been discovered. Dubbed Bumblebee, this malware targets corporate users. It is through Google…