Category: Bleeping Computer

A threat actor modified the source code of at least five plugins hosted on WordPress.org to include malicious PHP scripts that…

Over 100,000 sites have been impacted in a supply chain attack by the Polyfill.io service after a Chinese company acquired the domain…

The Medusa banking trojan for Android has re-emerged after almost a year of keeping a lower profile in campaigns targeting…

Luxury retailer Neiman Marcus confirmed it suffered a data breach after hackers attempted to sell the company’s database stolen in…

The FBI is warning of cybercriminals posing as law firms and lawyers that offer cryptocurrency recovery services to victims of…

P2PInfect, originally a dormant peer-to-peer malware botnet with unclear motives, has finally come alive to deploy a ransomware module and…

CISA is warning that its Chemical Security Assessment Tool (CSAT) environment was breached in January after hackers deployed a webshell…

Google is testing a new feature called “Digital Credential API” for Chrome on Android that allows websites to securely request identity…

A novel command execution technique dubbed ‘GrimResource’ uses specially crafted MSC (Microsoft Saved Console) and an unpatched Windows XSS flaw…

A novel command execution technique dubbed ‘GrimResource’ uses specially crafted MSC (Microsoft Saved Console) and an unpatched Windows XSS flaw…

Four Vietnamese nationals linked to the international cybercrime group FIN9 have been indicted for their involvement in a series of computer…

Hackers are exploiting a flaw in a premium Facebook module for PrestaShop named pkfacebook to deploy a card skimmer on…