PHP Everywhere RCE Flaws Threaten Thousands of WordPress Sites Researchers found three critical remote code execution (RCE) vulnerabilities in the ‘PHP Everywhere’ plugin for WordPress, used by over 30,000 websites worldwide. PHP Everywhere is a plugin that allows WordPress admins to insert PHP code in pages, posts, the sidebar, or Read more…
Microsoft Teams Now Needs 50% Less Power During Meetings Microsoft has drastically reduced Microsoft Teams’ power requirements in calls and meetings since June 2020, improving experience consistency and making it more friendly with low-end devices. Robert Aichner, a Principal Group Program Manager at Microsoft, said today that Microsoft Teams now Read more…
Wave of MageCart Attacks Target Hundreds of Outdated Magento Sites Analysts have found the source of a mass breach of over 500 e-commerce stores running the Magento 1 platform and involves a single domain loading a credit card skimmer on all of them. According to Sansec, the attack became evident Read more…
CISA Warns Admins to Patch Maximum Severity SAP Vulnerability The US Cybersecurity and Infrastructure Security Agency (CISA) has warned admins to patch a set of severe security flaws dubbed ICMAD (Internet Communication Manager Advanced Desync) and impacting SAP business apps using Internet Communication Manager (ICM). CISA added that failing to patch these Read more…
Ransomware Dev Releases Egregor, Maze Master Decryption Keys The master decryption keys for the Maze, Egregor, and Sekhmet ransomware operations were released last night on the BleepingComputer forums by the alleged malware developer. The Maze ransomware began operating in May 2019 and quickly rose to fame as they were responsible for the use Read more…
Meta and Chime Sue Nigerians Behind Facebook, Instagram Phishing Meta (formerly known as Facebook) has filed a joint lawsuit with Chime, a financial technology and digital banking company, against two Nigerian individuals who allegedly used Instagram and Facebook accounts to impersonate Chime and target its users in phishing attacks. The Read more…
Fake Windows 11 Upgrade Installers Infect you with RedLine Malware Threat actors have started distributing fake Windows 11 upgrade installers to users of Windows 10, tricking them into downloading and executing RedLine stealer malware. The timing of the attacks coincides with the moment that Microsoft announced Windows 11’s broad deployment phase, so Read more…
FBI Warns of Criminals Escalating SIM Swap Attacks to Steal millions The Federal Bureau of Investigation (FBI) says criminals have escalated SIM swap attacks to steal millions by hijacking victims’ phone numbers. The number of complaints received from the US public since 2018 and reported losses have increased almost fivefold, Read more…
Molerats Hackers Deploy New Malware in Highly Evasive Campaign The Palestinian-aligned APT group tracked as TA402 (aka Molerats) was spotted using a new implant named ‘NimbleMamba’ in a cyber-espionage campaign that leverages geofencing and URL redirects to legitimate websites. The campaign was discovered by Proofpoint, whose analysts observed three variations Read more…
Let us help you out.
Singapore
7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987
Thailand
The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand
Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!
Click one of our contacts below to chat on WhatsApp
