Malware Alert
Hackers Use Microsoft Teams to Trick Finance and Healthcare Staff Into Installing Backdoors
A newly documented campaign targets corporate employees at financial and healthcare organizations through Teams messages, convincing them to hand over remote access via Quick Assist…
Critical WordPress Plugin Bug Can Now Hijack 60,000 Websites With Admin Access
A privilege management bug in the User Registration & Membership plugin allows anyone to register as a site administrator without credentials, with Wordfence blocking hundreds…
China Associated APT41 Hackers Deploy Silver Dragon Malware Operation
Researchers at Check Point have exposed an APT41 sub-cluster deploying custom loaders, DNS tunneling, and a Google Drive backdoor to infiltrate government entities across Europe…
How Pakistan, Bangladesh, and Sri Lanka Were Hit by India-Linked Threat Actors
A newly identified cyber espionage campaign attributed to an India-nexus threat actor has targeted government agencies and critical infrastructure operators in Pakistan, Bangladesh and Sri…
Researchers Claim Malicious Repositories Turn Claude Code Into an Ideal Hacker’s Tool
Cybersecurity researchers at Check Point Research have disclosed three security vulnerabilities in Anthropic’s Claude Code, the AI-powered coding assistant, that could allow attackers to execute…
Hackers Can Now Take Cash From ATMs Without Cards or PINs
Hackers can now force ATM machines in Pakistan to release cash without using bank cards or customer details, after a new type of malware began…
Anthropic Launches Claude Code Security to Detect Zero-Day Flaws
Anthropic unveiled Claude Code Security, a new AI-powered vulnerability scanner that reportedly discovered over 500 security flaws in production open-source codebases; bugs that escaped detection…
The IT Tool Hackers Are Using to Take Over Entire Corporate Networks
Security researchers have confirmed that a critical vulnerability in BeyondTrust products is being actively exploited in the wild, with attackers deploying web shells, backdoors, and…
Researchers Identify First AI-Abusing Android Malware PromptSpy
Cybersecurity researchers have identified a novel Android malware strain that leverages Google’s generative artificial intelligence technology to maintain persistence on infected devices and aid remote…
Emergency Chrome Update Released to Fix High Severity Zero Day Bug
Google has released an emergency security update for its Chrome web browser to fix a Chrome zero-day vulnerability that has been actively exploited in real-world…
Critical WordPress Plugin Flaw Exposes 900,000+ Sites to Remote Code Execution
A newly disclosed critical security vulnerability in the WPvivid Backup & Migration plugin for WordPress, installed on more than 900,000 websites worldwide, could allow unauthenticated…
Security Alert: “AgreeTo” Outlook Add-In Hijacked to Steal 4,000+ Passwords
Cybersecurity researchers have uncovered the first known malicious Microsoft Outlook add-in discovered in the wild. This malware marks a significant expansion of supply chain attack…
Google Issues Urgent Warning: 40% of Android Phones at Risk from New Spyware
Security researchers have uncovered a highly advanced Android malware campaign capable of spying on phone calls, intercepting messages, and silently harvesting sensitive user data, underscoring…
