Latest about Security
WordPress plugin auth bypass exploited almost immediately after disclosure
Just hours after plugin bug was disclosed, hackers started scanning for vulnerable instances.
Immutable backup storage is the best protection against ransomware, but many businesses don’t have it
Immutable backup storage is key to protect against ransomware attacks, but many businesses don't use it.
ESET security scanner vulnerability used to deploy TCESB malware
Kaspersky found a threat actor abusing the popular EPP solution in BYOVD attacks.
Operation Endgame follow-up leads to detentions across Smoakloader ecosystem
Smokeloader customers were arrested, and their homes searched in a follow-up to the 2024 Operation Endgame.
US businesses are the top target for ransomware in 2025 so far
US SMBs in manufacturing are particular targets, although IT and services aren't faring much better.
This critical FortiSwitch flaw allows hackers to change admins passwords, and they can even do it remotely
There is a patch and a workaround, so make sure you apply at least one.
AkiraBot network hits thousands of sites with CAPTCHA bypassing AI spam
Tens of thousands of websites were served spam messages in chat, comment sections, and more.
Spyware combing for data 'of use to China' hidden inside religious and cultural apps
Experts warn spyware is being loaded into cultural and religious apps to gather data.
