Recent Security News
-
Hackers exploit critical flaw in WordPress Royal Elementor plugin
October 16, 2023 at 03:13PM A critical vulnerability in Royal Elementor Addons and Templates up to version 1.3.78 is being actively exploited by hackers. The flaw, tracked as CVE-2023-5360, allows unauthenticated attackers to upload arbitrary files and potentially achieve remote code execution, compromising the websites. Two WordPress security firms have reported a significant increase in…
-
‘RomCom’ Cyber Campaign Targets Women Political Leaders
October 16, 2023 at 02:44PM The Women Political Leaders Summit 2023 conference attendees were targeted by a cyber espionage campaign through a spoofed event website loaded with a malware called ROMCOM 4.0. The campaign focused on individuals promoting gender equality in the European Union. The cybercriminal group behind the attack, Void Rabisu, has evolved from…
-
Russian Sandworm hackers breached 11 Ukrainian telcos since May
October 16, 2023 at 02:08PM The Russian hacking group known as ‘Sandworm’ has compromised eleven telecommunication service providers in Ukraine between May and September 2023, according to a report by Ukraine’s Computer Emergency Response Team (CERT-UA). The hackers interfered with communication systems, causing service interruptions and potential data breaches. Sandworm used various tactics, including phishing…
-
Cisco warns of new IOS XE zero-day actively exploited in attacks
October 16, 2023 at 11:52AM Cisco has warned administrators about a severe zero-day vulnerability in its IOS XE Software that allows attackers to gain full control of affected routers. The vulnerability, identified as CVE-2023-20198, only affects devices with the Web User Interface feature enabled and the HTTP or HTTPS Server feature toggled on. Cisco advises…