PAX PoS Terminal Flaw Could Allow Attackers to Tamper with Transactions

17/01/2024 0 Comments 0 tags

The point-of-sale (PoS) terminals from PAX Technology are impacted by a collection of high-severity vulnerabilities that can be weaponized by threat actors to execute arbitrary code. The STM Cyber R&D

Inferno Malware Masqueraded as Coinbase, Drained $87 Million from 137,000 Victims

17/01/2024 0 Comments 0 tags

The operators behind the now-defunct Inferno Drainer created more than 16,000 unique malicious domains over a span of one year between 2022 and 2023. The scheme “leveraged high-quality phishing pages to lure

Remcos RAT Spreading Through Adult Games in New Attack Wave

17/01/2024 0 Comments 0 tags

The remote access trojan (RAT) known as Remcos RAT has been found being propagated via webhards by disguising it as adult-themed games in South Korea. WebHard, short for web hard drive,

Case Study: The Cookie Privacy Monster in Big Global Retail

17/01/2024 0 Comments 0 tags

Explore how an advanced exposure management solution saved a major retail industry client from ending up on the naughty step due to a misconfiguration in its cookie management policy. This

Alert: Over 178,000 SonicWall Firewalls Potentially Vulnerable to Exploits – Act Now

17/01/2024 0 Comments 0 tags

Over 178,000 SonicWall firewalls exposed over the internet are exploitable to at least one of the two security flaws that could be potentially exploited to cause a denial-of-service (DoS) condition

DDoS Attacks on the Environmental Services Industry Surge by 61,839% in 2023

16/01/2024 0 Comments 0 tags

The environmental services industry witnessed an “unprecedented surge” in HTTP-based distributed denial-of-service (DDoS) attacks, accounting for half of all its HTTP traffic. This marks a 61,839% increase in DDoS attack

Balada Injector Infects Over 7,100 WordPress Sites Using Plugin Vulnerability

16/01/2024 0 Comments 0 tags

Thousands of WordPress sites using a vulnerable version of the Popup Builder plugin have been compromised with a malware called Balada Injector. First documented by Doctor Web in January 2023, the campaign takes

High-Severity Flaws Uncovered in Bosch Thermostats and Smart Nutrunners

16/01/2024 0 Comments 0 tags

Multiple security vulnerabilities have been disclosed in Bosch BCC100 thermostats and Rexroth NXA015S-36V-B smart nutrunners that, if successfully exploited, could allow attackers to execute arbitrary code on affected systems. Romanian

3 Ransomware Group Newcomers to Watch in 2024

16/01/2024 0 Comments 0 tags

The ransomware industry surged in 2023 as it saw an alarming 55.5% increase in victims worldwide, reaching a staggering 4,368 cases.  Figure 1: Year over year victims per quarter The

Opera MyFlaw Bug Could Let Hackers Run ANY File on Your Mac or Windows

16/01/2024 0 Comments 0 tags

Cybersecurity researchers have disclosed a now-patched security flaw in the Opera web browser for Microsoft Windows and Apple macOS that could be exploited to execute any file on the underlying