Information stealer compromises legitimate sites to attack other sites
A new web skimming campaign uses compromised legitimate sites to act as command and control servers. Security researchers at Akamai have published a blog about a…
Category: MalwareBytes
Play ransomware gang compromises Spanish bank, threatens to leak files
Ransomware is creating additional work for a major Spanish bank. Globalcaja, said to have more than 300 offices in Spain and close to half a…
The #1 cyberthreat to schools, colleges, and universities
In the last 12 months, the Vice Society ransomware gang has conducted more known attacks against education targets globally, and in the USA and the…
Update now! MOVEit Transfer vulnerability actively exploited
A critical vulnerability in Progress MOVEit Transfer is being used to steal large amounts of data On May 31, 2023, Progress Software released a security…
Amazon’s Ring cameras were used to spy on customers
It’s what we all feared, but hoped wouldn’t be the case. Every single Amazon Ring employee was able to access every single customer video, even…
US hospital forced to divert ambulances after cyberattack
The Idaho Falls Community Hospital fell victim to a cyberattack on Monday and had to divert ambulances to nearby hospitals and close some of its…
Beware of China’s state-sponsored cyber actor
US businesses: watch out for Volt Typhoon, a threat actor sponsored by the People’s Republic of China (PRC). The US Cybersecurity and Infrastructure Security Agency…
Financial services company OneMain fined $4.25 million for security lapses
We take a look at a fine totalling millions aimed at financial services company OneMain. A series of security errors and mishaps has cost personal…
Microsoft gives Apple a migraine
Microsoft has released details about a vulnerability that can bypass macOS’s System Integrity Protection On May 18, 2023, Apple published security content for macOS Ventura…
Barracuda Networks patches zero-day vulnerability in Email Security Gateway
Barracuda Networks issued a patch for a zero-day vulnerability in its Email Security Gateway that was actively being exploited On May 20, Barracuda Networks issued…
Zyxel patches two critical vulnerabilities
Zyxel has released a security advisory about two critical vulnerabilities that could allow an unauthorized, remote attacker to take control of its firewall devices. Zyxell…
“Beautiful Cookie Consent Banner” WordPress plugin vulnerability: Update now!
We take a look at a vulnerability in a popular WordPress plugin. It’s been fixed, but you’ll need to update as soon as you can!…