A novel phishing technique known as "File Archiver in the Browser'' could leverage .ZIP domains to deceive users into opening malicious files. Google recently introduced the option to register .ZIP and .MOV domains, which sparked debates about potential cybersecurity risks as these are the same as
A cybersecurity firm, CloudSEK, has discovered many apps infected with SpinOk malware on the Google Play store after an extensive investigation. Their research team identified 193 infected apps, 43 of which were still active on the Google Play Store within the past week. The SpinOk Malware was
A global Magecart attack has wreaked havoc on numerous eCommerce websites, compromising thousands of customers' personal data and credit card information. The sophisticated cybercriminal group responsible for the attack has been injecting malicious scripts into legitimate websites, including
A team of researchers from Varonis Threat Labs recently made a significant discovery regarding certain Salesforce sites. These sites, known as Salesforce Ghost Sites, were once active sites that were left unattended. By exploiting vulnerabilities in the host headers of these websites, malicious
Automattic, the company responsible for the open-source WordPress content management system, has initiated the mandatory installation of a security patch on numerous websites. This action aims to rectify a critical vulnerability found in the Jetpack plugin, which could potentially give a threat
Cybersecurity researchers at Cisco Talos and the Citizen Lab have delved into the inner workings of the notorious Predator Android spyware, shedding light on its sophisticated surveillance capabilities. Developed by the Israeli company Intellexa (formerly known as Cytrox), Predator records phone
Researchers at SentinelLabs published a report on the morning of May 25th that identified a sizable malicious campaign targeting users of Portuguese financial institutions. The campaign has been dubbed “Operation Magalenha”. Attackers are able to steal credentials and exfiltrate personal
A significant cybercrime enterprise known as the "Lemon Group" has been discovered, pre-installing sophisticated malware on potentially 9 million Android-based smartphones, watches, TVs, and TV boxes worldwide. The group utilizes “Guerrilla” malware to perform a range of malicious activities,
Matveev, aliases "Wazawaka" and “Boriselcin”, faces criminal charges in New Jersey and Washington, D.C. for developing and deploying ransomware variants, including LockBit, Babuk, and Hive. U.S. authorities have added him to the Treasury Department's Specially Designated Nationals list, attributing
Spanish authorities have arrested 40 individuals, including 15 members of an organized crime gang known as Trinitarians and two hackers, for their alleged involvement in a cybercrime operation that involved bank fraud, identity theft, money laundering, and forgery. The group is believed to have