Zero-day in WPGateway WordPress plugin actively exploited in thousands WordPress sites
Zero-day in WPGateway WordPress plugin actively exploited in thousands WordPress sites Post Views: 80 Premium Content Subscribe to Patreon to watch this episode. Reading Time: 3 Minutes The Wordfence Threat Intelligence team warned today that WordPress sites are...
A new Browser-in-the-Browser attack led hackers steal Steam accounts
A new Browser-in-the-Browser attack led hackers steal Steam accounts Post Views: 83 Premium Content Subscribe to Patreon to watch this episode. Reading Time: 3 Minutes Hackers are launching new attacks to steal Steam credentials using a Browser-in-the-Browser phishing...
Blind SSRF vulnerability in WordPress Core feature could enable DDoS attacks
Blind SSRF vulnerability in WordPress Core feature could enable DDoS attacks Post Views: 37 Premium Content Subscribe to Patreon to watch this episode. Reading Time: 3 Minutes Researchers have gone public with a six-year-old blind server-side request forgery (SSRF)...
GIFShell attack creates reverse shell using Microsoft Teams GIFs
GIFShell attack creates reverse shell using Microsoft Teams GIFs Post Views: 301 Premium Content Subscribe to Patreon to watch this episode. Reading Time: 5 Minutes A new attack technique called ‘GIFShell’ allows threat actors to abuse Microsoft Teams for novel...
Cisco won’t fix authentication bypass zero-day in EoL routers
Cisco won’t fix authentication bypass zero-day in EoL routers Post Views: 170 Premium Content Subscribe to Patreon to watch this episode. Reading Time: 3 Minutes Cisco says that a new authentication bypass flaw affecting multiple small business VPN routers will not be...Recent News
New Ghost Tap Attack: The Next-Level Credit Card Scam Exploiting Apple Pay and Google Pay
Apple Rushes to Patch Two Zero-Day Exploits Targeting Intel-Based Macs
Chinese Hackers Exploit Zero-Day in FortiClient VPN with ‘DeepData’ Toolkit
Critical Flaw in Popular WordPress Plugin Puts Millions of Websites at Risk
Glove Stealer Malware Evades Chrome’s App-Bound Encryption to Target Cookies
New RustyAttr Trojan Evades macOS Security Using Hidden Metadata
GoIssue: Sophisticated Phishing Tool Targets GitHub Developer Credentials
New Ymir Ransomware Launches In-Memory Attacks Post-RustyStealer Infections
North Korean Hackers Deploy MacOS Malware with Unseen Stealth to Hijack Crypto Firms
Winos4.0 Malware Framework Uses Gaming Apps to Infiltrate Windows Systems
