The Hacker News

Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices

Eternidade Stealer spreads via WhatsApp hijacking, using Python scripts and IMAP-driven C2 updates to target Brazilian users.

W3 Total Cache WordPress plugin vulnerable to PHP command injection

WordPress plugin can be exploited to run PHP commands on the server by posting a comment that contains a malicious payload.

RondoDox botnet malware now hacks servers using XWiki flaw

The RondoDox botnet malware is now exploiting a critical remote code execution (RCE) flaw in XWiki Platform tracked as ...

Decades-old command resurfaces in modern malware campaigns

The "finger" command remains exploitable for remote code execution even after years of disuseAttackers use batch scripts to ...
PCMag on MSN

Your Info Is All Over the Dark Web. Here's How You Can Protect Yourself

Your data has likely been exposed in a breach. I spoke to security experts for their best tips on minimizing the chances of ...
CSO Online

Iranian APT hacks helped direct missile strikes in Israel and the Red Sea

Amazon Threat Intel has correlated activity by Iranian threat groups with subsequent missile strikes, and suggests that IT ...
Cryptopolitan on MSN

Hackers use fake reCAPTCHA pop-ups to install malware and steal crypto

Cybersecurity group eSentire has uncovered the use of fake CAPTCHA-style pop-ups to trick victims into deploying credential-harvesting malware, Amatera ...