Cybersecurity specialists report that, for some years now, a hacker has been running malicious servers throughout the Tor network in what appears to be an attempt to deanonymize users ofRead More →
The team in charge of GoCD announced the fix of three vulnerabilities that could be exploited in a chained manner to take full control of the underlying server. These flawsRead More →
A security report notes that Command-Option-Argument (coa), the popular npm library, has been infiltrated with a malicious backdoor code, which could have severe consequences worldwide. This library is downloaded aboutRead More →
FIN7, a dangerous and widely documented malicious hacking group, is employing a backdoor identified as Lizar disguised as a pentesting tool for Windows systems. According to researchers from security firmRead More →
A recently released report from security firm FireEye details how hackers exploit the Background Intelligent Transfer Service (BITS), a legitimate component of Windows systems, to inadvertently install ransomware in vulnerableRead More →
The Thrive Themes developers announced the release of security patches for some flaws in their WordPress plugins and legacy themes, noting that some groups of threat actors could attack someRead More →
Researchers at the Swiss-based cybersecurity firm Prodaft recently announced the identification of a massive hacking campaign allegedly linked to the SolarWinds incident. In their report, experts say that last AugustRead More →
An unidentified hacking group is using a sophisticated malware for Mac devices in order to attack software developers using the Xcode development environment, integrated into some Apple systems. According toRead More →
Several members of the cybersecurity community have shared a list of organizations affected by Solarigate malware (also known as Sunburst), related to SolarWinds supply chain commitment. The list shows thatRead More →