Cisco SD-WAN zero-day CVE-2026-20245 was exploited months before disclosure: Mandiant reveals how a malicious CSV file ...

Three popular plugins served malicious JavaScript through a compromised CDN.

Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on the Envato Market, to create malicious ...

Cryptocurrency exchange Coinbase was sued in California federal court over frozen crypto allegedly tied to a $55 million DAI phishing theft from August 2024. The complaint, filed Monday in a San ...

TP-Link patched high-severity Archer NX router flaws, including one that could let attackers upload rogue firmware without authentication. TP-Link just patched a flaw that let attackers push rogue ...

The script also downloads from a Dropbox account additional tools encrypted using the AES-256 cipher, and kills competing miners present on the compromised host. Other cases involve the deployment of ...

Cyber threat actors have been exploiting a vulnerability in Gladinet’s Triofox, a file-sharing and remote access platform, and chained it with the abuse of the built-in anti-virus feature to achieve ...

Threat actors are using the "mu-plugins" directory in WordPress sites to conceal malicious code with the goal of maintaining persistent remote access and redirecting site visitors to bogus sites.

Attackers exploited a script injection vulnerability via GitHub Actions to inject malicious code during the automated build process, poisoning the resulting packages of the popular Python library.

This repository contains POC code for two previously unknown vulnerabilities in the RouterOS SMB service. The poc script called smb_crash.py contains both versions of the exploit. The script will ...

The FBI and partners from 10 other countries are urging owners of Ubiquiti EdgeRouters to check their gear for signs they’ve been hacked and are being used to conceal ongoing malicious operations by ...