Two flaws – one of them yet to be fixed – are afflicting a third-party plugin used by Magento e-commerce websites.
Some underground forum users said they’re monetizing the information through the State Department’s anti-influence-campaign effort.
In a rare move, the encrypted messaging service is being used to send stolen payment-card data from websites back to cybercriminals.
While privacy advocates have warned against Ring’s partnerships with police, newly unearthed documents reveal FBI concerns about ‘new challenges’ smart doorbell footage could create for cops.
The Iran-based APT has infiltrated multiple VPNs using open-source tools and known exploits.
The notarized malware payloads were discovered in a recent MacOS adware campaign, disguised as Adobe Flash Player updates.
The Iran-linked APT is targeting Israeli scholars and U.S. government employees in a credential-stealing effort.
More than 2 billion breached Fortnite accounts have gone up for sale in underground forums so far in 2020 alone.
The RCE bug affects versions below 4.4 of the Slack desktop app.
Researchers warn that a phishing scam is targeting Instagram users via direct messages on the app.