Cybersecurity News
Gutenberg Template Library & Redux Framework Bugs Plague WordPress Sites

LockBit Jumps Its Own Countdown, Publishes Bangkok Air Files

BEC Scammers Seek Native English Speakers on Underground

Feds Warn of Ransomware Attacks Ahead of Labor Day

This is why the Mozi botnet will linger on
The botnet continues to haunt IoT devices, and likely will for some time to come.Cream Finance platform pilfered for over $34 million in cryptocurrency
The project has promised to cover losses suffered by its users.Scam artists are recruiting English speakers for business email campaigns
Finding fluent speakers is becoming important to criminals conducting business-based attacks.Fortress Home Security Open to Remote Disarmament

Cream Finance DeFi Platform Rooked For $29M

Proxyware Services Open Orgs to Abuse – Report

Flaw in the Quebec vaccine passport: analysis
ESET's cybersecurity expert Marc-Étienne Léveillé analyses in-depth the Quebec's vaccine proof apps VaxiCode and VaxiCode Verif.
The post Flaw in the Quebec vaccine passport: analysis appeared first on WeLiveSecurity
Faille dans la preuve vaccinale Québécoise : analyse
Les chercheurs d’ESET expliquent les détails d’une faille découverte dans VaxiCode Vérif, l’application mobile permettant la vérification des preuves vaccinales québécoise
The post Faille dans la preuve vaccinale Québécoise : analyse appeared first on WeLiveSecurity
Back-to-Basics: Think Before You Click
As small and medium businesses begin to re-open following the pandemic, it’s important to do so securely in order to protect customer’s payment card data. Too often, data breaches happen as a result of vulnerabilities that are entirely preventable. The PCI Security Standards Council (PCI SSC) has developed a set of payment protection resources for small businesses. In this 8-part back-to-basics series, we highlight payment security basics for protecting against payment data theft. Today’s blog focuses on thinking before you click.
Don’t use single‑factor authentication, warns CISA
The federal agency urges organizations to ditch the bad practice and instead use multi-factor authentication methods
The post Don’t use single‑factor authentication, warns CISA appeared first on WeLiveSecurity
WooCommerce Pricing Plugin Allows Malicious Code-Injection

QNAP Is Latest to Get Dinged by OpenSSL Bugs Fallout

Top 3 APIs Vulnerabilities: Why Apps are Owned by Cyberattackers

Cyberattackers are now quietly selling off their victim's internet bandwidth
Proxyware is yet another way for criminals to generate revenue from their victims.Initial Access Broker use, stolen account sales spike in cloud service cyberattacks
Current trends also include the abuse of Docker images.LockFile Ransomware Uses Never-Before Seen Encryption to Avoid Detection
