Researchers at Imperva, a security vendor, have discovered that web application attacks in the healthcare sector surged in December.  Attacks jumped 51% last month from detected volumes in November.  Four specific attack types saw the largest…

Researchers at Wordfence, have discovered two vulnerabilities (one critical) in a WordPress plugin called Orbit Fox. Orbit Fox is a multi-featured WordPress plugin that works with the Elementor, Beaver Builder, and Gutenberg site-building utilities. It…

Security researchers at Check Point recently discovered a Mobile Remote Access Trojan (MRAT). According to the researchers, the MRAT dubbed Rogue was developed by known Android malware authors Triangulum and HeXaGoN Dev, who have been selling their…

Google has released a six-part report, providing details about a complex hacking operation discovered in early 2020. The hacking operation targeted Android and Windows devices. According to Google, the attacks were launched via two exploit servers. Each…

Researchers at Sentinel Labs have identified an updated version of OSAMiner, the cryptominer that targets the Mac operating system to mine Monero. According to Sentinel Labs, OSAMiner has been active since 2015, spreading through compromised video games…

Crowdstrike researchers have revealed a new strain of malware called Sunspot. This new malware is said to have been used by SolarWinds attackers to inject the Sunburst malicious code into SolarWinds' Orion IT software. Further investigation of the…

Researchers at  Safety Detectives discovered a misconfigured ElasticSearch database owned by Chinese social-media management company SocialArks, which exposed 318 million records from Facebook, Instagram, and LinkedIn.  The records included…

A team of researchers from the George Washington University and the University of Maryland, Baltimore County, conducted a study in which they explored what motivates or prevents the adoption of password managers among older adults over the age of 60. The…

The Intel Federal CTO Steve Orrin and the Dell Federal CTO Cameron Chehreh have discussed the bottom-up transformation of IT by the fifth generation of wireless technology 5G and how this revolution will impact security. 5G will enhance…

The U.S. Homeland Security Department's Cybersecurity & Infrastructure Security Agency (CISA) issued an alert about the use of compromised Microsoft 365 and Azure applications by the Advanced Persistent Threat (APT) actors behind the SolarWinds…

Security researchers at Sakura Samuria have revealed that it took them just hours to access over 100,000 personal records and credentials belonging to United Nations Employees.  The researchers were looking for bugs to report to the UN under its…

An analysis conducted by the Cisco Talos research team further highlighted the continued advancement in the development of attack tools. The developers of these tools are making it increasingly difficult for defenders to detect and analyze their malware…