Collaborate Disseminate
Dubbed Lotus Wiper, the malware targets recovery mechanisms, overwrites drives, and systematically deletes files.
The post New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention appeared first on SecurityWeek.
Continue reading New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention
The exploitation of the command injection vulnerability started one year after public disclosure and PoC exploit code publication.
The post Mirai Botnet Targets Flaw in Discontinued D-Link Routers appeared first on SecurityWeek.
Continue reading Mirai Botnet Targets Flaw in Discontinued D-Link Routers
The campaigns focus on financial organizations, including cryptocurrency, venture capital, and blockchain entities.
The post North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks appeared first on SecurityWeek.
Continue reading North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks
The company released 481 new security patches across 28 product families, including over 300 fixes for remotely exploitable, unauthenticated flaws.
The post Oracle Patches 450 Vulnerabilities With April 2026 CPU appeared first on SecurityWeek.
Continue reading Oracle Patches 450 Vulnerabilities With April 2026 CPU
Masquerading as popular cryptocurrency wallets, the apps can hijack recovery phrases and private keys.
The post Dozens of Malicious Crypto Apps Land in Apple App Store appeared first on SecurityWeek.
Continue reading Dozens of Malicious Crypto Apps Land in Apple App Store
The security defects could be exploited for remote code execution, OS command injection, and WAF detection bypass.
The post Progress Patches Multiple Vulnerabilities in MOVEit WAF, LoadMaster appeared first on SecurityWeek.
Continue reading Progress Patches Multiple Vulnerabilities in MOVEit WAF, LoadMaster
CISA expanded the KEV catalog with eight flaws, but five of them have been flagged as exploited before.
The post Organizations Warned of Exploited Cisco, Kentico, Zimbra Vulnerabilities appeared first on SecurityWeek.
Continue reading Organizations Warned of Exploited Cisco, Kentico, Zimbra Vulnerabilities
The hackers targeted LayerZero’s DVN, compromising certain RPCs and DDoSing others to trigger failover to the poisoned infrastructure.
The post $290 Million Kelp DAO Crypto Heist Blamed on North Korea appeared first on SecurityWeek.
Continue reading $290 Million Kelp DAO Crypto Heist Blamed on North Korea
Tyler Buchanan admitted in court to hacking into various companies, defrauding them, and stealing cryptocurrency from multiple individuals.
The post British Scattered Spider Hacker Pleads Guilty in the US appeared first on SecurityWeek.
Continue reading British Scattered Spider Hacker Pleads Guilty in the US
The machine emulator has been abused in at least two different campaigns distributing ransomware and remote access tools.
The post Hackers Abuse QEMU for Defense Evasion appeared first on SecurityWeek.
Continue reading Hackers Abuse QEMU for Defense Evasion