XSS

The Latest

New SteelFox Malware Posing as Popular Software to Steal Browser Data

New SteelFox Malware Posing as Popular Software to Steal Browser Data

Fabrice Malware on PyPI Has Been Stealing AWS Credentials for 3 Years

Fabrice Malware on PyPI Has Been Stealing AWS Credentials for 3 Years

Androxgh0st Botnet Integrates Mozi, Expands Attacks on IoT Vulnerabilities

Androxgh0st Botnet Integrates Mozi, Expands Attacks on IoT Vulnerabilities

North Korean Hackers Use Fake News to Spread 'Hidden Risk' Malware

North Korean Hackers Use Fake News to Spread ‘Hidden Risk’ Malware

XSS and OAuth Combo Threatens Millions of Users Due to Hotjar Flaw

Read More

2 minute read

Security

XSS and OAuth Combo Threatens Millions of Users Due to Hotjar Flaw

Cybersecurity Experts Uncover Critical Vulnerabilities in Leading Web Analytics Platform Hotjar, Potentially Exposing Sensitive Data of Millions of…

July 29, 2024

Cybercriminals Sell Stolen Singaporean Identities on Dark Web for $8

Read More

2 minute read

Stolen Singaporean Identities Sold on Dark Web Starting at $8

Singapore citizens, beware! Cybercriminals are targeting your digital identities and KYC data, starting at just $8, putting users at risk of exploitation. Learn how to protect your data, finances, and reputation with strong passwords, multi-factor authentication, and smart online habits.

June 25, 2024

Mailcow Patches Critical XSS and File Overwrite Flaws - Update NOW

Read More

2 minute read

Security

Mailcow Patches Critical XSS and File Overwrite Flaws – Update NOW

Mailcow email servers faced critical vulnerabilities (CVE-2024-31204 and CVE-2024-30270) allowing potential remote code execution. Update to Mailcow 2024-04 (Moopril Update) to patch the security holes and keep your email server safe.

June 24, 2024

Popular WordPress Plugins Leave Millions Open to Backdoor Attacks

Read More

3 minute read

Security

Popular WordPress Plugins Leave Millions Open to Backdoor Attacks

Fastly researchers discover unauthenticated stored XSS attacks plaguing WordPress Plugins including WP Meta SEO, and the popular WP…

June 3, 2024

Critical XSS Vulnerability in LiteSpeed Cache Plugin Affects Over 1.8M WordPress Sites

Read More

2 minute read

Security

LiteSpeed Cache Plugin XSS Vulnerability Affects 1.8M WordPress Sites

Is your WordPress site using LiteSpeed Cache? A recent surge in malicious JavaScript injections targets vulnerable versions. Learn how to identify the signs of infection and prevent future attacks. Patch, scan, and secure your WordPress site today!

May 8, 2024

New ResumeLooters Gang Targets Job Seekers, Steals Millions of Resumes

Read More

3 minute read

New ResumeLooters Gang Targets Job Seekers, Steals Millions of Resumes

So far, the gang has mostly targeted job seekers in the APAC (Asia Pacific) region.

February 6, 2024

Gamers Warned of Potential CS2 Exploit That Can Reveal IP Addresses

Read More

3 minute read

Gamers Warned of Potential CS2 Exploit That Can Reveal IP Addresses

Gaming influencers are advising CS2 players to refrain from playing the game at the moment.

December 11, 2023

ProtonMail Code Vulnerabilities Leak Emails

Read More

2 minute read

Security

ProtonMail Code Vulnerabilities Leaked Emails

Key Findings ProtonMail, a popular Swiss-based email service that markets itself as a secure and private alternative to…

September 7, 2023

Vulnerability Enabled Bing.com Takeover, Search Result Manipulation

Read More

2 minute read

Vulnerability Enabled Bing.com Takeover, Search Result Manipulation

Cybersecurity researchers at Wiz reported the vulnerability to Microsoft and dubbed the attack “BingBang”.

byHabiba Rashid

March 30, 2023

Unpatched flaws exposing Linux marketplaces to remote attacks

Read More

2 minute read

Security

Unpatched flaws exposing Linux marketplaces to remote attacks

The vulnerabilities remain unpatched and can be exploited to launch supply-chain attacks or achieve RCE against Linux marketplaces.

June 23, 2021