Connect with us
An NPM package with millions of weekly downloads has been speedily updated after being hijacked and armed with cryptomining and password-exfiltrating malware. Three malicious versions of the...
Developers of Discourse, the popular open source forum software, have patched a security flaw that could result in an attacker achieving remote code execution (RCE) on vulnerable systems....
Polygon, a blockchain technology company, has paid out $2 million in bug bounty rewards for a ‘double spend’ vulnerability that could have wreaked havoc across its network. The...
A massive fraud campaign utilizing 151 Android apps with 10.5 million downloads was used to subscribe users to premium subscription services without their knowledge. Researchers at Avast...
An unknown ransomware group is exploiting a critical SQL injection bug found in the BillQuick Web Suite time and billing solution to deploy ransomware on their...
A critical Discourse remote code execution (RCE) vulnerability tracked as CVE-2021-41163 was fixed via an urgent update by the developer on Friday Discourse is an open-source...
Microsoft says the Russian-backed Nobelium threat group behind last year’s SolarWinds hack is still targeting the global IT supply chain, with 140 managed service providers (MSPs) and...
Biometrics are now the second-most adopted authentication technology behind only passwords, according to the FIDO Alliance’s new Online Authentication Barometer. It reveals that biometrics, such as using...
Corvus Insurance released findings from its Corvus Risk Insights Index, a compilation of industry trends and data analysis based on the company’s IT security scanning technology,...
It is hard to make it through a workday without hearing of another healthcare data breach or ransomware attack. This shouldn’t be a surprise; since March...
