Cybercriminals are exploiting Facebook business pages and ads to promote counterfeit Windows themes that infect unsuspecting users with SYS01 password-stealing [...]
Microsoft addressed a Windows zero-day vulnerability that had been exploited in attacks for eighteen months to execute malicious scripts, circumventing [...]
Hackers are actively targeting older versions of Rejetto's HTTP File Server (HFS) to distribute malware and cryptocurrency mining software. According [...]
A vulnerability in Phoenix SecureCore UEFI firmware, CVE-2024-0762, impacts devices with many Intel CPUs, prompting Lenovo to release new firmware [...]
AMD is investigating a potential cyberattack after a threat actor claimed to have stolen employee information, financial documents, and confidential [...]
Google Chrome 124's release last week introduced a quantum-resistant X25519Kyber768 encapsulation, causing connectivity issues for some users. Google has rolled [...]
The overseer behind the HelloKitty ransomware endeavor has declared a rebranding, now known as 'HelloGookie.' They've also disclosed passwords for [...]
A recently identified Android banking malware dubbed 'SoumniBot' has adopted a unique obfuscation tactic, capitalizing on vulnerabilities within the Android [...]
During April's Patch Tuesday, Microsoft addressed two zero-day vulnerabilities that were actively exploited, initially overlooked by the company. The first [...]
Introducing 'Darcula', a novel phishing-as-a-service (PhaaS) platform utilizing a network of 20,000 domains to mimic reputable brands and pilfer user [...]
A widespread StrelaStealer malware campaign has affected organizations in the United States and Europe, aiming to pilfer email credentials. Initially [...]
Today, researchers revealed vulnerabilities affecting 3 million Saflok RFID locks worldwide, enabling easy door unlocking with forged keycards. Discovered by [...]
Three cybersecurity researchers uncovered nearly 19 million plaintext passwords exposed on the public internet due to misconfigured Firebase instances, a [...]
The ransomware group 'ShadowSyndicate' targeted servers vulnerable to CVE-2024-23334, a directory traversal flaw in the aiohttp Python library. Aiohttp, crucial [...]
The cumulative update KB5035849, launched on today's Patch Tuesday, encounters installation issues on Windows 10 and Windows Server setups, reporting [...]
Hackers are launching large-scale attacks on WordPress sites, injecting scripts to force visitors' browsers to brute-force passwords on other platforms. [...]