In a recently detected campaign, a hacker group has been resetting administrator passwords on WordPress sites by exploiting a critical zero-day vulnerability in Easy WP SMTP, a plugin with overRead More →
A recent report states that a group of nation state sponsored threat actors managed to compromise SolarWinds Orion IT management software to attack multiple organizations in the U.S., including governmentRead More →
Even if you have never been the victim of an online fraud attempt or something similar, it is highly likely that access credentials for your email, social media or workRead More →
Cybersecurity specialists have revealed the finding of various vulnerabilities in the point of sale (PoS) terminals of two of the most important manufacturers of these devices. Exploiting these vulnerabilities wouldRead More →
Microsoft security teams have warned their users about a campaign related to Adrozek, a browser hijacking and credential theft malware capable of compromising up to 30,000 users a day. MalwareRead More →
Information security specialists report that more than 85,000 SQL databases have been put up for sale on a dark web forum in exchange for $550 USD each. Apparently this illegalRead More →
OpenSSL developers have just announced that the latest version, OpenSSL 1.1.1i, contains a number of patches to fix a critical vulnerability that could be exploited to deploy denial of serviceRead More →
Imagine this situation: When you open an HTML document something strange happens and after a while all the files on your hard drive end up in the hands of aRead More →
Millions of Microsoft Office 365 users around the world are exposed to a new malicious phishing campaign targeting employees of financial companies, healthcare services, insurers, manufacturing companies, telecommunications, and publicRead More →
A group of threat actors allegedly sponsored by a nation state successfully attacked the systems of FireEye, a security company based in California, USA, as confirmed by the company itselfRead More →
