October 12, 2023 at 04:59PM Fraudsters are exploiting X’s new verification system to impersonate brands and steal personal information. The system, implemented after Elon Musk changed the rules, allows anyone to obtain a blue checkmark by paying a monthly fee. Scammers have taken advantage of this, creating fake accounts and using phishing pages to gather … Read more
October 12, 2023 at 10:21AM A phishing campaign is using LinkedIn smart links to bypass email defenses and target Microsoft users. The campaign involves redirecting users to malicious websites to steal their credentials and personal information. The attackers utilized over 80 unique smart links embedded in more than 800 phishing messages. The campaign targeted individuals … Read more
October 12, 2023 at 06:33AM Researchers have discovered a new type of malware that disguises itself as a WordPress plugin in order to gain control over compromised websites. The malware is capable of creating administrator accounts, remotely controlling the site, altering content, injecting spam links, and redirecting visitors to malicious sites. It is difficult to … Read more
October 11, 2023 at 09:59AM Hackers are exploiting LinkedIn Smart Links in phishing attacks to steal Microsoft account credentials. The Smart Links, used for marketing and tracking, appear to come from a trustworthy source and bypass email protections. The recent attacks targeted a range of sectors, including finance, manufacturing, energy, construction, and healthcare. The phishing … Read more
October 10, 2023 at 03:06AM A security flaw in the libcue library affects GNOME Linux systems, allowing remote code execution (RCE) when a user downloads a malicious .cue file. The vulnerability (CVE-2023-43641) is caused by memory corruption in libcue versions 2.2.1 and earlier. Detailed technical information has been withheld to give users time to update. … Read more