Category: security
WooCommerce phishing campaign uses fake patch to lure victims into installing backdoors
Patchstack spotted a new phishing campaign targeting WooCommerce users The email warns the users about a “critical vulnerability” that must be fixed The “fix” is actually malware that creates a rogue admin account and drops stage-two malware If you are a WooCommerce user, pay attention, since there is a new…
Read More
Craft CMS zero-day exploited to compromise hundreds of vulnerable servers
Researchers discovered two critical-severity zero-days in Craft CMS Criminals are allegedly chaining them together to gain access Some 300 sites already fell victim Cybercriminals are abusing two zero-day vulnerabilities in the Craft content management system (CMS) to access flawed servers and run malicious code remotely (RCE). This is according to…
Read More
Largest DDoS attack of 2025 hit an online betting organization with 1Tbps brute force: here’s what we know
A massive DDoS attack was recently detected during a major NHL event Attack grew from 67Gbps to nearly 1Tbps in twenty minutes Multivector strike used UDP, SYN, IP, and TCP flood techniques Cybersecurity firm Qrator Labs has claimed it successfully mitigated the largest DDoS attack so far recorded in 2025.…
Read More
North Korean hackers are using advanced AI tools to help them get hired at Western firms
North Korean hackers are using GenAI to hold jobs in western firms New research from Okta reveals AI written CVs and messages This is an escalation from an existing fake interview campaign New research from Okta has revealed that hackers from the Democratic People’s Republic of Korea (DPRK), are using…
Read More
Almost a million patients hit by Frederick Health data breach
Frederick Health Medical Group was struck with ransomware in late January 2025 It concluded its investigation and says almost a million people lost sensitive data The data includes names, SSNs, health insurance information, and more We now know how many people are affected by a recent ransomware attack on Frederick…
Read More
A worrying stealthy Linux security bug could put your systems at risk – here’s what we know
A security oversight in Linux allows rootkits to bypass enterprise security solutions and run stealthily It was found in the io_uring Kernel interface Researchers built a PoC, now available on GitHub Cybersecurity researchers from ARMO recently discovered a security oversight in Linux which allows rootkits to bypass enterprise security solutions…
Read More