Attackers scan 1.6 million WordPress sites for vulnerable plugin
Security researchers have detected a massive campaign that scanned close to 1.6 million WordPress sites for the presence of a…
Data Breaches Linked to Ransomware Declined in Q2 2022
Phishing retained its place as the top root cause of data compromises, according to new data from the Identity Theft…
New Retbleed speculative execution CPU attack bypasses Retpoline fixes
Security researchers have discovered a new speculative execution attack called Retbleed that affects processors from both Intel and AMD and…
Don’t Have a COW: Containers on Windows and Other Container-Escape Research
Several pieces of Black Hat USA research will explore container design weaknesses and escalation of privilege attacks that can lead…
Fake Google Software Updates Spread New Ransomware
"HavanaCrypt" is also using a command-and-control server that is hosted on a Microsoft Hosting Service IP address, researchers say.
Hackers can unlock Honda cars remotely in Rolling-PWN attacks
A team of security researchers found that several modern Honda car models have a vulnerable rolling code mechanism that allows…
In Switch, Trickbot Group Now Attacking Ukrainian Targets
Latest campaigns are a break from its usual financially motivated attacks and appear aligned with Russian interests, security researchers say.
ICYMI: Critical Cisco RCE Bug, Microsoft Breaks Down Hive, SHI Cyberattack
Dark Reading's digest of the other don't-miss stories of the week, including a new ransomware targeting QNAP gear, and a…
Free decryptor released for AstraLocker, Yashma ransomware victims
New Zealand-based cybersecurity firm Emsisoft has released a free decryption tool to help AstraLocker and Yashma ransomware victims recover their…
New stealthy OrBit malware steals data from Linux devices
A newly discovered Linux malware is being used to stealthily steal information from backdoored Linux systems and infect all running processes…