​A security vulnerability has been disclosed in the LiteSpeed Cache plugin for WordPress that could enable unauthenticated users to escalate their privileges. Tracked as CVE-2023-40000, the vulnerability was addressed in October… Read More »WordPress LiteSpeed Plugin Vulnerability Puts 5 Million Sites at Risk

​A critical security flaw has been disclosed in a popular WordPress plugin called Ultimate Member that has more than 200,000 active installations. The vulnerability, tracked as CVE-2024-1071, carries a CVSS score of… Read More »WordPress Plugin Alert – Critical SQLi Vulnerability Threatens 200K+ Websites

​Ukrainian entities based in Finland have been targeted as part of a malicious campaign distributing a commercial remote access trojan known as Remcos RAT using a malware loader called IDAT… Read More »New IDAT Loader Attacks Using Steganography to Deploy Remcos RAT

​More than 8,000 subdomains belonging to legitimate brands and institutions have been hijacked as part of a sophisticated distribution architecture for spam proliferation and click monetization. Guardio Labs is tracking… Read More »8,000+ Subdomains of Trusted Brands Hijacked for Massive Spam Operation

​Cybersecurity researchers are warning about a spike in email phishing campaigns that are weaponizing the Google Cloud Run service to deliver various banking trojans such as Astaroth (aka Guildma), Mekotio, and Ousaban (aka Javali) to… Read More »Banking Trojans Target Latin America and Europe Through Google Cloud Run

​Last year, the Open Worldwide Application Security Project (OWASP) published multiple versions of the “OWASP Top 10 For Large Language Models,” reaching a 1.0 document in August and a 1.1… Read More »Three Tips to Protect Your Secrets from AI Accidents

​A set of fake npm packages discovered on the Node.js repository has been found to share ties with North Korean state-sponsored actors, new findings from Phylum show. The packages are… Read More »North Korean Hackers Targeting Developers with Malicious npm Packages

​The threat actors behind the LockBit ransomware operation have resurfaced on the dark web using new infrastructure, days after an international law enforcement exercise seized control of its servers. To that end,… Read More »LockBit Ransomware Group Resurfaces After Law Enforcement Takedown

​In the past 2 years, we have observed a significant surge in hacktivism activity due to ongoing wars and geopolitical conflicts in various regions. Since the war against Ukraine began,… Read More »A New Age of Hacktivism

​A recently open-sourced network mapping tool called SSH-Snake has been repurposed by threat actors to conduct malicious activities. “SSH-Snake is a self-modifying worm that leverages SSH credentials discovered on a compromised system… Read More »Cybercriminals Weaponizing Open-Source SSH-Snake Tool for Network Attacks