According to an FBI alert, Ranzy Locker ransomware operators crippled the networks of at least 30 U.S. organizations, mostly via brute-force attacks. The group runs a double extortion model, threatening victims to leak data if they did not agree with ransom demands. The alert by officials offer mitigation steps to organizations, including regular backups, network segmentation, […]

The OptinMonster plugin is affected by a high-severity flaw that allows unauthorized API access and sensitive information disclosure on roughly a million WordPress sites.

The majority of the disclosed bugs are critical-severity problems, and most allow arbitrary code execution (ACE). Privilege escalation, denial-of-service and memory leaks/information disclosure are all well-represented, as well.

Researchers have spotted two campaigns linked to either the REvil ransomware gang or the SolarMarker backdoor that use Search Engine Optimization poisoning to serve payloads to targets.

The latest funding, which brings the total raised by Dragos to roughly $360 million, was led by Koch Disruptive Technologies and funds and accounts managed by BlackRock. Several other investors also took part in this round.

New Android malware can root infected devices to take complete control and silently tweak system settings, as well as evade detection using code abstraction and anti-emulation checks.

The private key used to sign European Union Digital Covid certificates has been reportedly leaked and is being circulated on messaging apps and online data breach marketplaces.

German investigators have reportedly identified a Russian man whom they believe to be one of REvil ransomware gang’s core members, one of the most notorious and successful ransomware groups in recent years.

Cybercriminals, who are becoming increasingly sophisticated, could take advantage of natural disasters such as hurricanes, wildfires, and tornadoes to wreak havoc on critical infrastructure.

The two packages, named noblox.js-proxy and noblox.js-proxies, use typo-squatting to appear as the legitimate Roblox API wrapper called noblox.js-proxied by changing a single letter in the name.