Banking malware hits 248,000 mobile users via social engineering
In 2024, mobile banking malware affected nearly 248,000 users, a 3.6x jump from 69,000 the previous year. The surge was most significant in the year's second half, highlighting growing threats [...]
WordPress plugin vulnerability exposes websites to SQL injection
A critical vulnerability in the popular WordPress plugin GamiPress, identified as CVE-2024-13496, allows unauthenticated SQL injection attacks and carries a high CVSS 3.1 score of 7.5, highlighting its serious risk. [...]
Chinese ‘Web Shell Whisperer’ exploits shells and tunnels for stealthy access
Sygnia uncovered a cyber espionage operation by a China-linked group, “Weaver Ant.” The group targeted a major Asian telecom company, using web shells and tunnels for persistent access and espionage. [...]
A recent update’s code error caused the Outlook Web outage, Microsoft reports
Microsoft experienced a major outage on March 19, 2025, affecting Outlook on the web. The issue was caused by a code error in a recent update, preventing many users from [...]
Dragon RaaS leads crimeware with new attack tactics
Dragon RaaS, a ransomware group blending hacktivism and cybercrime, has become a key player in the “Five Families” syndicate, alongside ThreatSec, GhostSec, Blackforums, and SiegedSec. Emerging in July 2024 as [...]
Get Social