X

Vous n'êtes pas connecté

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 04/Feb 13:39

Casio UK invaded by the Magento Web Skimmer Campaign

Background Web skimming, also known as “Magecart attacks,” involves injecting malicious code into e-commerce websites to steal payment card information and other sensitive data entered by customers. These attacks typically exploit vulnerabilities in the website’s software or third-party plugins to insert skimming scripts. Once the malicious script is in place, it captures the data entered […]

Articles similaires

Sorry! Image not available at this time

Zimbra Zero-Day Exploit Used in ICS File Attacks to Steal Sensitive Data

itsecuritynews.info - 12/Oct 15:02

  Security researchers have discovered that hackers exploited a zero-day vulnerability in Zimbra Collaboration Suite (ZCS) earlier this year using...

Sorry! Image not available at this time

Zimbra Zero-Day Exploit Used in ICS File Attacks to Steal Sensitive Data

itsecuritynews.info - 12/Oct 15:02

  Security researchers have discovered that hackers exploited a zero-day vulnerability in Zimbra Collaboration Suite (ZCS) earlier this year using...

Sorry! Image not available at this time

Microsoft Defender Vulnerabilities Allow Attackers to Bypass Authentication and Upload Malicious Files

itsecuritynews.info - 11/Oct 17:32

Critical flaws uncovered in the network communication between Microsoft Defender for Endpoint (DFE) and its cloud services, allowing post-breach...

Sorry! Image not available at this time

Hackers Weaponizing WordPress Websites by Injecting Malicious PHP Codes Silently

itsecuritynews.info - 08/Oct 10:02

WordPress websites have become a prime target for threat actors seeking to monetize traffic and compromise visitor security. In recent months, a new...

Sorry! Image not available at this time

Android spyware campaigns impersonate Signal and ToTok messengers

bleepingcomputer.com - 02/Oct 10:53

Two new spyware campaigns that researchers call ProSpy and ToSpy lured Android users with fake upgrades or plugins for the Signal and ToTok messaging...

Sorry! Image not available at this time

Crimson Collective Exploits AWS Services to Steal Sensitive Data

itsecuritynews.info - 08/Oct 06:32

A newly identified threat group called Crimson Collective has emerged as a significant security concern for organizations using Amazon Web Services...

Sorry! Image not available at this time

New Android Pixnapping attack steals MFA codes pixel-by-pixel

bleepingcomputer.com - 14/Oct 18:46

A new side-channel attack called Pixnapping enables a malicious Android app with no permissions to extract sensitive data by stealing pixels...

Sorry! Image not available at this time

New Android Pixnapping attack steals MFA codes pixel-by-pixel

bleepingcomputer.com - 14/Oct 18:46

A new side-channel attack called Pixnapping enables a malicious Android app with no permissions to extract sensitive data by stealing pixels...

Sorry! Image not available at this time

Report Details Security Weakness in Comet AI Browser from Perplexity

itsecuritynews.info - 03/Oct 14:32

A new LayerX report shows how a single malicious URL can exploit Perplexity’s Comet AI browser via prompt injection, potentially exposing sensitive...

Sorry! Image not available at this time

Zimbra users targeted in zero-day exploit using iCalendar attachments

securityaffairs.co - 06/Oct 07:33

Threat actors exploited a Zimbra zero-day via malicious iCalendar (.ICS) files used to deliver attacks through calendar attachments. StrikeReady...