Author: Mash

Several npm packages published by the decentralized exchange platform dYdX crypto exchange have been compromised. The compromised packages were published [...]

According to The Cybersecurity and Infrastructure Security Agency (CISA), the high severity Java deserialization vulnerability affecting multiple Zoho ManageEngine products [...]

According to VMware and Microsoft, an ongoing widespread Chromeloader malware campaign was seen to drop malicious browser extensions and even [...]

GTA 6 source code and gameplay videos have been leaked to GTAForums by the threat actor ‘teapotuberhacker’. The RAR archive [...]

Romanian cybersecurity company Bitdefender has released a free decryptor for LockerGoga ransomware that victims can use to decrypt their files [...]

The new security advisory has been issued by Apple on Monday in which the company addressed the eighth zero-day vulnerability [...]

More and more ransomware gangs are employing the new tactic called intermittent encryption which allows faster encryption and fewer chances [...]

According to Microsoft, state-sponsored hacking group DEV-0270 (also known as Nemesis Kitten) is actively abusing recently found vulnerabilities and uses [...]

The operation CodeRAT originates from Iran and mostly targets Farsi-speaking software devs with Word documents that include a DDE exploit. [...]

In the new Chrome version 105.0.5195.102 Google has addressed a high severity vulnerability that was actively exploited in the wild. [...]

According to Chile's national computer security and incident response team (CSIRT) the ransomware attack that started on August 25 has [...]

According to Securonix security researchers, the recently discovered malware campaign GO#WEBBFUSCATOR spreads through phishing emails, malicious documents, and even James [...]

According to Check Point's report, malware by the developer 'Nitrokod' delays its installation for a month to avoid being detected [...]

Chromium-based web browsers (including Chrome) allow websites to write anything they want into the user's clipboard without getting permission from [...]

New malware dubbed 'MagicWeb' from the Russian state-sponsored hacking group APT29 (also known as Nobelium, Cozy Bear) has been discovered [...]

Password management company LastPass was hacked two weeks ago, allowing hackers to steal source code and technical information. According to [...]

Chrome extension 'Internet Download Manager' has reached 200,000 installs on Chrome Web Store, while sitting on the store since June [...]

Hackers have managed to abuse the zero-day vulnerability in General Bytes Bitcoin ATM servers to steal the cryptocurrency from the [...]

The online tool InAppBrowser created by developer Felix Krause allows users to check if their in-app browsers inject privacy-threatening JavaScript [...]

Apple has released a new Security Update to fix two recently exploited zero-day vulnerabilities. The first vulnerability is tracked as [...]

A threat actor dubbed Gwisin has launched a ransomware GwisinLocker which targets South Korean companies by encrypting Windows and Linux [...]

Twitter has confirmed that the data of 5.4 million users have been leaked because of the now-patched zero-day vulnerability. The [...]

According to the Sentinel Labs researchers, LockBit ransomware operators have been abusing Microsoft Defender’s command line tool “MpCmdRun.exe” to side-load [...]

According to Microsoft, a hacking group Knotweed together with the Austrian spyware vendor DSIRF is targeting European and Central American [...]

A big number of malicious Android apps have been recently found by Dr. Web's antivirus team on Google Play Store, [...]

Qbot, also known as Qakbot is a Windows malware strain that evolved from a banking trojan into a malware dropper [...]

The Israeli spyware vendor Candiru was abusing Chrome zero-day by using DevilsTongue spyware to collect data on high-interest targets. The [...]

A recently discovered ransomware family dubbed Luna has been seen to encrypt devices running several operating systems, including Windows, Linux, [...]

Ransomware operation HolyGhost has been active for more than a year, mainly targeting small businesses. According to Microsoft Threat Intelligence [...]

Microsoft has confirmed that the ShadowCoerce Windows NTLM relay vulnerability has been fixed. According to Microsoft's spokesperson, "the MS-FSRVP coercion [...]