When web applications have Cross-Site Scripting (XSS) vulnerabilities, attackers can inject harmful scripts into content that looks like it’s from a trustworthy website....
Our Blog
But I must explain to you how all this mistaken idea of denoun
excing duties pleasure and praising pain was born.
Cybersecurity researchers have discovered a previously undocumented malware targeting Android devices that uses compromised WordPress sites as relays for its actual command-and-control (C2)...
The U.K. National Cyber Security Centre (NCSC) is calling on manufacturers of smart devices to comply with new legislation that prohibits them from...
Threat actors are attempting to actively exploit a critical security flaw in the ValvePress Automatic plugin for WordPress that could allow site takeovers....
A new malware campaign leveraged two zero-day flaws in Cisco networking gear to deliver custom malware and facilitate covert data collection on target...
The threat actor known as ToddyCat has been observed using a wide range of tools to retain access to compromised environments and steal valuable data....
A previously undocumented “flexible” backdoor called Kapeka has been “sporadically” observed in cyber attacks targeting Eastern Europe, including Estonia and Ukraine, since at least mid-2022....
Polish government institutions have been targeted as part of a large-scale malware campaign orchestrated by a Russia-linked nation-state actor called APT28. “The campaign sent...
Cybersecurity researchers have identified a malicious Python package that purports to be an offshoot of the popular requests library and has been found concealing a...
With the browser becoming the most prevalent workspace in the enterprise, it is also turning into a popular attack vector for cyber attackers....
Showing 11–20 of 40 posts