New macOS stealer campaign uses Script Editor in ClickFix attack

A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix ...

Hackers exploit critical flaw in Ninja Forms WordPress plugin

A critical vulnerability in the Ninja Forms File Uploads premium add-on for WordPress allows uploading arbitrary files ...

New WhatsApp Attacks—Microsoft Shares Critical Warning For Users

WhatsApp users need to pay close attention following the latest attack warning from Microsoft. Here's what you need to know.
Microsoft

Cookie-controlled PHP webshells: A stealthy tradecraft in Linux hosting environments

Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting ...

Microsoft: Hackers Are Using WhatsApp to Deliver Malware to Windows PCs

Hackers are using WhatsApp messages to deliver malware to Windows PCs, exploiting user trust and attachments to trigger ...
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...
The Hacker News

The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...
Defense News

Could MQ-9B drones draw Canada and Denmark closer in Arctic surveillance?

Visitors view a MQ-9B Sea Guardian drone by General Atomics on display at the UMEX exhibition in Abu Dhabi, United Arab Emirates, in February 2022. (Photo by -/AFP via Getty Images) MILAN — Armed with ...
The Hollywood Reporter

The Women’s List Launches Third Annual Search for Scripts Written by Women

“Too many women’s scripts never even get a read,” co-founder Jan Kimbrough says. “We exist to change that." By Kimberly Nordyke Managing Editor, Digital The Women’s List, a nonprofit organization ...
The Hacker News

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Cybersecurity researchers have disclosed details of an active web traffic hijacking campaign that has targeted NGINX installations and management panels like Baota (BT) in an attempt to route it ...
Morningstar

Tradeweb Launches Multi-Asset Package Trading for USD Swaps

Barclays executes first fully electronic multi-asset package trade for USD swaps on Tradeweb SEF Tradeweb Markets Inc. (Nasdaq: TW), a leading, global operator of electronic marketplaces for rates, ...