Tag: May 2023

The premium WordPress plugin 'Gravity Forms', has been found to have a vulnerability that allows unauthenticated PHP Object Injection.

RomCom backdoor malware has been discovered by Trend Micro. The malware is disguised as well-known or fictional software on impersonated websites.

Microsoft has addressed a widespread problem caused by a faulty driver that renders the built-in cameras in certain ARM-based Windows devices.

Automattic, has initiated the force installation of a security patch to address a critical vulnerability in the Jetpack WordPress plugin.

Toyota Motor Corporation has revealed that two additional misconfigured cloud services exposed car owners' personal information for over seven years.

Neho, a real estate agency based in Switzerland, experienced a misconfiguration in its systems that exposed sensitive credentials to the public.

A team of researchers from Georgia Tech, the University of Michigan, and Ruhr University Bochum has developed a novel attack known as "Hot Pixels".

A new phishing kit called "File Archivers in the Browser" has been discovered, exploiting ZIP domains to display fake WinRAR or Windows File Explorer.

A sophisticated malware campaign has been discovered that targets Android users in India with a remote access trojan (RAT) called DogeRAT.

The Lazarus Group, a state-backed hacking group linked to North Korea, has been identified targeting vulnerable Windows Internet Information Services.