Internet Security

WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks

May 6, 2023 add comment
A reflected cross-site scripting vulnerability is the Advanced Custom Fields plugin for WordPress exposed over 2 million sites to hacking. Assetnote researchers discovered a reflected cross-site scripting vulnerability, tracked... Read more »

Fortinet fixed two severe issues in FortiADC and FortiOS

May 5, 2023 add comment
Fortinet has addressed a couple of high-severity vulnerabilities impacting FortiADC, FortiOS, and FortiProxy. Fortinet addressed nine security vulnerabilities affecting multiple products, including two high-severity issues, tracked as CVE-2023-27999 and... Read more »

Pro-Russia group NoName took down multiple France sites, including the French Senate one

May 5, 2023 add comment
The French Senate’s website was taken offline by a DDoS attack launched by the pro-Russian hacker group NoName. The pro-Russia hacker group NoName is claiming responsibility for a DDoS... Read more »

North Korea-linked Kimsuky APT uses new recon tool ReconShark

May 5, 2023 add comment
North Korea-linked APT group Kimsuky has been observed using a new reconnaissance tool dubbed ReconShark in a recent campaign. SentinelOne researchers observed an ongoing campaign from North Korea-linked Kimsuky Group that is... Read more »

Fleckpe Android malware totaled +620K downloads via Google Play Store

May 5, 2023 add comment
Fleckpe is a new Android subscription Trojan that was discovered in the Google Play Store, totaling more than 620,000 downloads since 2022. Fleckpe is a new Android subscription Trojan... Read more »

Cisco EoL SPA112 2-Port Phone Adapters are affected by critical RCE

May 4, 2023 add comment
Cisco is warning customers of a critical remote code execution vulnerability affecting its EoL SPA112 2-Port Phone Adapters. Cisco is warning of a critical remote code execution (RCE) vulnerability,... Read more »

Experts devised a new exploit for the PaperCut flaw that can bypass all current detection

May 4, 2023 add comment
VulnCheck researchers devised a new exploit for a recently disclosed critical flaw in PaperCut servers that bypasses all current detections. Cybersecurity researchers from VulnCheck have developed a new exploit... Read more »

Facebook warns of a new information-stealing malware dubbed NodeStealer

May 4, 2023 add comment
Facebook discovered a new information-stealing malware, dubbed ‘NodeStealer,’ that is being distributed on Meta. NodeStealer is a new information-stealing malware distributed on Meta that allows stealing browser cookies to... Read more »

Russia-linked Sandworm APT uses WinRAR in destructive attacks on Ukraine’s public sector

May 4, 2023 add comment
CERT-UA is warning of destructive cyberattacks conducted by the Russia-linked Sandworm APT group against the Ukraine public sector. Russia-linked APT group Sandworm is behind destructive cyberattacks against Ukrainian state... Read more »

City of Dallas shut down IT services after ransomware attack

May 4, 2023 add comment
The City of Dallas, Texas, was hit by a ransomware attack that forced it to shut down some of its IT systems. The IT systems at the City of... Read more »
Subscribe to our Newsletter