On the eve of the Super Bowl (the main sporting event of the year in the United States, the final match for the title of the NFL champion), the San Francisco 49ers club suffered from a BlackByte ransomware attack. The hackers...
Author - Emma Davis
Fake Windows 11 installers download RedLine malware onto computers
Cybercriminals have begun using fake Windows 11 installers to lure users that want to upgrade the previous version of the operating system, Windows 10. fact, victims receive RedLine malware on their computers, which steals their...
RCE Vulnerabilities in PHP Everywhere Plugin Threaten Thousands of WordPress Sites
WordFence has discovered three dangerous RCE vulnerabilities in the popular PHP Everywhere plugin, which is used by 30,000 WordPress sites. All bugs were rated 9.9 out of 10 on the CVSS vulnerability rating scale and can be used...
Mazda’s infotainment systems shut down after listening to a radio station in Seattle
A very strange case is dealt with by Mazda engineers and the management of the NPR radio station, KUOW, which broadcasts in Seattle at a frequency of 94.9 FM. The fact is that in Mazda cars produced from 2014 to 2017 and tuned to...
CISA obliged federal agencies to urgently fix vulnerability in Windows 10
The US Cybersecurity and Infrastructure Security Agency (CISA) has put federal agencies on a tight deadline by requiring them to fix a critical vulnerability in Windows 10 by February 18th. is the vulnerability CVE-2022-21882 (7...
Vulnerability in Argo CD allows to steal data using Helm charts
A vulnerability in the Argo CD tool, used by thousands of organizations to deploy applications to Kubernetes, could be used for lateral movement, privilege escalation, and to steal sensitive data, including passwords and API keys...
Fake NFT trading netted almost $9 million to scammers
Chainalysis analysts have studied the market and report that in 2021, 110 fraudulent traders “earned” about $8.9 million on fictitious NFT trading. is worth noting that the study was focused only on transactions made...
Developers of top 100 npm packages are required to use 2FA
Due to increasing attacks on the supply chain and hacks, the administrators of Node Package Manager (npm) decided to force the owners of the hundred most popular (by the number of dependencies) packges to use two-factor...
DeadBolt ransomware exploits Qnap NAS vulnerability patched in December
Qnap is warning NAS owners to enable automatic firmware updates on their devices to protect against DeadBolt ransomware attacks. me remind you that it was originally reported that DeadBolt encrypts devices using some kind of 0...
277,000 routers are vulnerable to Eternal Silence attack
Researchers talk about the Eternal Silence malware attack that uses Universal Plug and Play (UPnP) to turn routers into a proxy server used to launch various attacks and hide the location of intruders. explains that UPnP is...