Flaw in Slider Revolution Plugin Exposed 4m WordPress Sites
A flaw in the Slider Revolution plugin has exposed millions of WordPress sites to unauthorized file access
Information Security Magazine
Whisper 2FA Behind One Million Phishing Attempts Since July
1 month ago
Whisper 2FA is now one of the most active PhaaS tools alongside Tycoon and EvilProxy, responsible for one million attacks since July 2025
Last Windows 10 Patch Tuesday Features Six Zero-Days
1 month ago
Microsoft has fixed over 170 CVEs in October’s Patch Tuesday, including six zero-day vulnerabilities
Capita Fined £14m After 2023 Breach that Hit 6.6 Million People
1 month ago
Outsourcing giant Capita has been fined £14m by the ICO after a major data breach in 2023
UK, US Sanction Southeast Asia-Based Online Scam Network
1 month ago
Investigations found that the network operates scam centers in Cambodia, Myanmar and across Southeast Asia
Legacy Windows Protocols Still Expose Networks to Credential Theft
1 month ago
Legacy Windows protocols are still exposing organizations to credential theft, Resecurity found
Hacker Group TA585 Emerges With Advanced Attack Infrastructure
1 month ago
A newly identified cybercrime group TA585 is running an advanced cyber operation distributing MonsterV2 malware
Senior Execs Falling Short on Cyber-Attack Preparedness, NCSC Warns
1 month ago
In a joint warning letter, UK ministers urged FTSE 350 CEOs to bolster cyber defenses
Chinese Hackers Use Trusted ArcGIS App For Year-Long Persistence
1 month ago
ReliaQuest report reveals Flax Typhoon attackers maintained year-long access to an ArcGIS system
UK Firms Lose Average of £2.9m to AI Risk
1 month ago
A new EY report claims unmanaged AI risk is causing millions of pounds’ worth of losses for UK organizations
UK: NCSC Reports 130% Spike in "Nationally Significant" Cyber Incidents
1 month ago
The UK cybersecurity agency reported 204 cyber incidents of “national significance” between September 2024 and August 2025 – an all-time high
Hackers Target ScreenConnect Features For Network Intrusions
1 month ago
A rise in attacks exploiting RMM tools like ScreenConnect enables system control via phishing tactics
Spain Arrests Alleged Leader of GXC Team Cybercrime Network
1 month ago
Spanish authorities have arrested a 25-year-old Brazilian accused of leading the GXC Team and selling malware and AI tools to cybercriminals
New Stealit Malware Campaign Spreads via VPN and Game Installer Apps
1 month ago
A new campaign distributing the Stealit infostealer employs previously unknown malware delivery techniques and infrastructure
Apple Bug Bounty Payouts Can Now Top $5m
1 month ago
Apple has doubled its top bug bounty reward to $2m but with bonuses it could reach $5m
FBI and French Police Shutter BreachForums Domain Again
1 month ago
The infamous BreachForums site has been taken offline again to disrupt Scattered Lapsus$ Hunters
Google Launches AI Bug Bounty with $30,000 Top Reward
1 month 1 week ago
Google has introduced a new AI Vulnerability Reward Program offering up to $30,000 for bug discoveries in its AI products
Google: Clop Accessed “Significant Amount” of Data in Oracle EBS Exploit
1 month 1 week ago
GTIG highlighted indicators that Clop is behind the extortion campaign targeting Oracle EBS instances, with its activity likely beginning as early as August 9
Pro-Russia Hacktivists “Claim” Attack on Water Utility Honeypot
1 month 1 week ago
Forescout said that the TwoNet actor was lured into attacking a honeypot disguised as a water treatment utility, providing insights into the group’s tactics
Researchers Warn of Security Gaps in AI Browsers
1 month 1 week ago
A new report from SquareX Labs highlights security weaknesses in AI browsers like Comet, revealing new cyber-risks
Checked
7 hours 34 minutes ago