JavaScript Packing Found in More Than 25% of Malicious Sites
Obfuscation techniques are extremely prevalent, data shows, but they can't be used as a single indicator of compromise because legitimate…
JavaScript Packing Found in More Than 25% of Malicious Sites
Obfuscation techniques are extremely prevalent, data shows, but they can't be used as a single indicator of compromise because legitimate…
New Gummy Browsers attack lets hackers spoof tracking profiles
University researchers in the US have developed a new fingerprint capturing and browser spoofing attack called Gummy Browsers. They warn…
Trickbot spreads malware through new distribution channels
TrickBot operators are back and expand the distribution channels with partnership with cybercrime affiliates. The operators behind the […] The…
About 26% of all malicious JavaScript threats are obfuscated
A research that analyzed over 10,000 samples of diverse malicious software written in JavaScript concluded that roughly 26% of it…
Malicious Chrome ad blocker injects ads behind the scenes
The AllBlock Chromium ad blocking extension has been found to be injecting hidden affiliate links that generate commissions for the…
NSA explains how to avoid dangers of Wildcard TLS Certificates and ALPACA attacks
The NSA issued a technical advisory to warn organizations against the use of wildcard TLS certificates and the […] The…
WhatsUpGold 21.0.3 Cross Site Scripting
Authored by Andreas Finstad WhatsUpGold version 21.0.3 suffers from a persistent cross site scripting vulnerability. advisories | CVE-2021-41318 Change Mirror…
WordPress TranslatePress 2.0.8 Cross Site Scripting
Authored by Nosa Shandy WordPress TranslatePress plugin version 2.0.8 suffers from a persistent cross site scripting vulnerability. advisories | CVE-2021-24610…
$100 Million Pledged by Google to Groups that Manage Open-Source Projects
Google recently announced a $100 million donation to organizations that manage open-source security priorities and assist with vulnerability fixes, and…