Law enforcement estimates campaign has already bilked cryptocurrency investors out of $42.7 million.
Author: Dark Reading Staff, Dark Reading
An ongoing campaign is actively targeting the vulnerability in the Kaswara Modern WPBakery Page Builder Addon, which is still installed on up to 8,000 sites, security analysts warn.
IT asset tracker and auditor software has a critical issue with insecure object deserialization that could allow threat actors to execute code, researchers say.
Joshua Schulte has been convicted for his role in the Vault 7 Wikileaks data dump that exposed invasive US cyber intelligence tactics.
Attackers use scam security checks to steal victims' government documents, photos, banking information, and email passwords, researchers warn.
Professional Finance Company (PFC) was hit in February 2022 by a ransomware attack.
Microsoft reveals now-fixed flaw in Apple's App Sandbox controls could allow attackers to escalate device privileges and deploy malware.
The massive phishing campaign does not exploit a vulnerability in MFA. Instead, it spoofs an Office 365 authentication page to steal credentials.
This Tech Tip outlines how system administrators can get started with automated continuous patching for their Windows devices and applications.
Python's most popular package manager is intent on securing the supply chain by requiring developers to enable two-factor authentication.