Your blog category
WordPress.org has announced a new account security measure that will require accounts with capabilities to update plugins and themes to activate two-factor authentication (2FA) mandatorily. The enforcement is expected to… Read More »WordPress Mandates Two-Factor Authentication for Plugin and Theme Developers
A “simplified Chinese-speaking actor” has been linked to a new campaign that has targeted multiple countries in Asia and Europe with the end goal of performing search engine optimization (SEO)… Read More »DragonRank Black Hat SEO Campaign Targeting IIS Servers Across Asia and Europe
The operators of the mysterious Quad7 botnet are actively evolving by compromising several brands of SOHO routers and VPN appliances by leveraging a combination of both known and unknown security… Read More »Quad7 Botnet Expands to Target SOHO Routers and VPN Appliances
The Singapore Police Force (SPF) has announced the arrest of five Chinese nationals and one Singaporean man for their alleged involvement in illicit cyber activities in the country. The development… Read More »Singapore Police Arrest Six Hackers Linked to Global Cybercrime Syndicate
Imagine a world where you never have to remember another password. Seems like a dream come true for both end users and IT teams, right? But as the old saying… Read More »Why Is It So Challenging to Go Passwordless?
Cybersecurity researchers have uncovered a new set of malicious Python packages that target software developers under the guise of coding assessments. “The new samples were tracked to GitHub projects that… Read More »Developers Beware: Lazarus Group Uses Fake Coding Tests to Spread Malware
Ivanti has released software updates to address multiple security flaws impacting Endpoint Manager (EPM), including 10 critical vulnerabilities that could result in remote code execution. A brief description of the… Read More »Ivanti Releases Urgent Security Updates for Endpoint Manager Vulnerabilities
Microsoft on Tuesday disclosed that three new security flaws impacting the Windows platform have come under active exploitation as part of its Patch Tuesday update for September 2024. The monthly… Read More »Microsoft Issues Patches for 79 Flaws, Including 3 Actively Exploited Windows Flaws
The threat actor known as CosmicBeetle has debuted a new custom ransomware strain called ScRansom in attacks targeting small- and medium-sized businesses (SMBs) in Europe, Asia, Africa, and South America,… Read More »CosmicBeetle Deploys Custom ScRansom Ransomware, Partnering with RansomHub
A trio of threat activity clusters linked to China has been observed compromising more government organizations in Southeast Asia as part of a renewed state-sponsored operation codenamed Crimson Palace, indicating… Read More »Experts Identify 3 Chinese-Linked Clusters Behind Cyberattacks in Southeast Asia