Attacks on WordPress sites using a vulnerability in the REST API, patched in WordPress version 4.7.2, have intensified over the past two days, as attackers have now defaced over 1.5 million pages, spread across 39,000 unique domains.
For the past few days, Google has been making a lot of webmasters very nervous, as its Google Search Console service, formerly known as Google Webmaster, has been sending out security alerts to people it shouldn't.
A new ransomware called Serpent Ransomware has been discovered that appears to be a new variant of the Hades Locker and Wildfire infections. This article provides a brief summary of how the ransomware is distributed and detailed description of how it encrypts a computer.
Yesterday Microsoft released Insider Preview Build 15031 for PC to insiders in the fast ring, This release introduces two new features called Dynamic Lock and Compact Overlay Windows.
Security researchers have discovered a never-before-seen remote access trojan (RAT) that utilizes Tor proxies to redirect traffic from infected hosts to servers hidden on the Tor network.
For a limited time, the Hacking for Dummies, 5th Edition eBook is available for free. This eBook will provide basic info on how to perform penetration testing on your own systems to identify weaknesses in your system and how to resolve them.
The US Department of Justice (DoJ) filed official charges today against Harold Thomas Martin III, 52, of Glen Burnie, Maryland, for stealing over 50TB of documents from several US government agencies, including documents labeled as Top Secret.
Hackers attacking banks and government institutions have used legitimate and reputable applications to infect computers and steal data, all while leaving minimal traces behind.
The US is considering a measure that would ask visa applications to give up passwords for social media accounts if they want to receive passage to the United States, according to statements made by Department of Homeland Security Secretary John Kelly at a DHS committee meeting on Tuesday.
Vivaldi Software released today version 1.7 of the Vivaldi browser, which now includes a built-in screen capturing utility that allows users to take snapshots of the entire page or just small sections.
Security researchers have stumbled upon a Windows trojan that hackers are using to help with the distribution of the infamous Mirai Linux malware, used to infect IoT devices and carry out massive DDoS attacks.
Russian authorities arrested nine hackers they suspect of being involved in the distribution of the Lurk malware. This is the second wave of arrests after authorities apprehended 50 suspects in May 2016.
The Email Privacy Act (EPA) is for the second year in a row in front of the US Senate after the US House of Representatives approved the bill on Monday.
Security researchers from Proofpoint have come across a sophisticated phishing kit that automates the process of building and deploying high-end phishing pages, and which is extremely efficient at collecting login credentials and user details from PayPal users.
A ransomware called Erebus has been discovered that utilizes a UAC bypass, encrypts file name extensions using ROT-23, and has a low ransom amount of ~$90USD.
Experts from Sudo Security Group have discovered that at least 76 of the most popular iOS apps available through Apple's App Store have failed to properly implement TLS encryption and expose their users to silent MitM (Man-in-the-Middle) attacks.
A judge has sentenced Morgan C. Culbertson, 21, of Pittsburgh to three years probation, with 300 hours of community service and computer monitoring, for his role in creating and selling the Dendroid RAT (Remote Access Trojan).
Vizio agreed on Monday to pay a fine of $2.2 million after it was caught secretly collecting user data and then selling personal user details to third-parties without the user's explicit consent.
WordPress sites that haven't been updated to the most recent version, v4.7.2, released last week, are under attack as four hacking groups are conducting mass defacement campaigns.