The Escalation of OilRig Cyber Campaigns: Targeting Israel's Core Sectors
Discover the strategic evolution of the Iranian APT group OilRig in their latest cyberattacks on Israel, employing advanced downloaders and cloud-based tactics to target key sectors.
Malicious Code Found in Recent Update of @ledgerhq/connect-kit NPM Package
A recent update to the @ledgerhq/connect-kit NPM package, version 1.1.7, has been found to contain suspicious and potentially malicious code, raising significant security concerns within the cryptocurrency community.
Ubiquiti Community Forum Reports Disturbing Security Lapse in Cloud Site Manager
A recent report on the Ubiquiti Community Forum highlights a serious security concern involving the Cloud Site Manager, where a user inadvertently gained access to numerous other users' consoles.
Over 90,000 WordPress Sites at Risk Due to Critical Plugin Flaw
A critical security flaw in a popular WordPress plugin exposes websites to severe risks. Unveiling CVE-2023-6553, a high-severity vulnerability in the Backup Migration plugin, this essential read highlights the potential for remote code execution and full site compromise.
ESET Research Uncovers Malicious Python Projects on PyPI
ESET Research exposes a series of malicious Python projects on PyPI, posing a significant threat to both Windows and Linux systems. Dive into our latest blog post to learn about the discovery of over 100 harmful packages, downloaded more than 10,000 times.
BazaCall Phishing Scheme: The Deceptive Use of Google Forms
This sophisticated attack cleverly employs Google Forms to create a facade of legitimacy, fooling victims with fake subscription notices and remote access traps. Our in-depth analysis reveals how this deceptive strategy operates, showcasing the innovative use of trusted platforms by cybercriminals.
MGM Resorts Confronts Massive Data Breach: A Detailed Analysis
MGM Resorts Confronts Massive Data Breach: A Detailed Analysis