WordPress.org has announced a new account security measure that will require accounts with capabilities to update plugins and themes to activate two-factor authentication (2FA) mandatorily. The enforcement is expected to come into effect starting October 1, 2024. “Accounts with commit access can push updates and changes to plugins and themes used by millions of WordPress…
Cybersecurity researchers have uncovered a new stealthy piece of Linux malware that leverages an unconventional technique to achieve persistence on infected systems and hide credit card skimmer code. The malware, attributed to a financially motivated threat actor, has been codenamed sedexp by Aon’s Stroz Friedberg incident response services team. “This advanced threat, active since 2022,…
Threat actors have been exploiting the attack vector known as Sitting Ducks since at least 2019 to conduct malware delivery, phishing, brand impersonation, and data exfiltration by exploiting flaws in DNS. This widespread flaw, affecting multiple DNS providers, enables domain hijacking without detection. Besides this, the researchers from Infoblox and Eclypsium have unveiled this critical…
YouTube Down: After Microsoft’s services went down across the world following a cybersecurity update from CrowdStrike, it now appears that Google’s video streamer YouTube is down across India. As per Downdetector, reports of YouTube outages have been flagged from major cities, including the likes of New Delhi, Kolkata, Mumbai, and Bengaluru. Team YouTube has said that…
Cyber Fraudsters Hack Server of Bank in Noida, Steal 16.71 Crore Cyber fraudsters recently allegedly hacked the server of a commercial bank in Noida’s Sector 62 to steal Rs 6.71 crore, said the police. They added that this major breach was accomplished by hacking into the bank’s server and transferring the money to 84 different…