Category: security
WordPress hackers are teaming up with commercial adtech firms to distribute malware to millions of users – here’s how to stay safe
Push notifications are now being used as malware delivery systems, and users are unknowingly subscribing to them Fake CAPTCHA prompts are now the gateway to persistent browser hijacks and phishing attacks WordPress sites are quietly hijacking users through invisible DNS commands and shared JavaScript payloads Recent investigations have revealed a…
Read More
Major US healthcare data provider hit by data breach – over 5 million patients affected, here’s what we know
Episource confirms cyberattack with patient data stolen The theft happened in late January 2025, and includes policy and MedicAid information Customers are urged to remain vigilant American healthcare data giant Episource has confirmed suffering a cyberattack in which it lost sensitive data on more than five million people. In a…
Read More
Over 16 billion records leaked in “unimaginable” major data breach – here’s what we know
Researchers found 30 databases housing 16 billion records online The records were most likely generated by infostealers Records come from a wide range of providers, from Apple to Google and many more Security researchers have reported discovering what could be the mother of all data breaches – a set of…
Read More
Jaw-dropping security flaws found in open source code could allow hackers to spirit away entire projects – here’s what devs need to know
Sysdig exposed how a trusted GitHub feature can silently hand control to attackers pull_request_target isn’t just risky, it’s a loaded weapon in the wrong hands Even top-tier security projects like MITRE’s can fall to simple GitHub workflow misconfigurations Experts have revealed several critical vulnerabilities in GitHub Actions workflows which could…
Read More
Scania hit by cyberattack – thousands of customers potentially affected, here’s what we know
An external IT partner to Scania lost its login credentials through an infostealer The hackers used the password to access Scania and steal files They asked the company for money, and later offered the archive for sale Swedish automotive manufacturer Scania has confirmed suffering a cyberattack which saw it lose…
Read More
One of the world’s most popular CMS tools has an embarrassing security flaw, so patch immediately
The Sitecore CMS had an account with a hardcoded password Threat actors could use it to upload arbitrary files, achieving RCE Thousands of endpoints are potentially at risk Sitecore Experience Platform, an enterprise-level content management system (CMS) carried three vulnerabilities which, when chained together, allowed threat actors full takeover of…
Read More