Hackers deploying Telegram bot to steal troves of data from WooCommerce websites have been found. These malicious adversaries used credit card skimmers, leading to several cases of credit card theft reported on an eCommerce site. The first scenario is that a website owner received numerous complaints from customers who reported faulty transactions on their cards...Continue Reading
National entities have been alerted about the possibility of high-risk distributed denial-of-service (DDoS) attacks, based on a recent advisory from the Computer Security Incident Response Team (CSIRT) in Italy. DDoS attacks usually cause severe damage, service outage, and operational disruptions to businesses and organisations. The Italian agency continually detected signs and threats of cyberattacks against...Continue Reading
A high chance of websites being exposed to third-party JavaScripts has recently been identified by researchers, with a further concern of threat actors having an easy way to exploit them to inject malicious codes into the sites. In a normal occurrence, webpages load a third-party script into a browser coming from an external server that...Continue Reading
Sberbank, one of Russia’s largest financial institutions, had been hit by waves of cyberattacks, including a massive strike of DDoS or distributed denial-of-service attack, recorded as the largest one in its history. From the statement of the bank’s director, he mentioned that hackers had been attacking Sberbank in the past months. Being the largest financial...Continue Reading
About 100,000 top-ranking websites have recently been examined by security experts, revealing that some of them leak users’ data entered on website forms to third-party trackers even before users hit the submit button. Moreover, even if users have not submitted their data on the forms and deleted everything they typed in, the websites still share...Continue Reading
The rate of ransom distributed denial-of-service or RDDoS attacks was observed to have dropped in the first quarter of 2022 based on the latest statistics provided by security analysts. The RDDoS operators hit a targeted firm with massive data to cause their servers a service outage. Upon disrupting the firm’s service, the threat actors will...Continue Reading
A state-owned aerospace and defense firm from Russia called Rostec has reported a cyberattack incident that took down its website. According to Rostec, their website has already been receiving signs of cyberattack since last February upon the Russian invasion of Ukraine. The state defense firm also added that they attribute the attack threats to Ukrainian...Continue Reading
Experts have seen a massive surge of cyberattacks that targeted Ukrainian WordPress sites and attributed it to the current Russia-Ukraine conflict. Over a hundred thousand attacks were recorded within February 2022, with more than 200,000 cyberattacks between February 25th and 27th. Moreover, another researcher explained that most of the attacks were exclusively on a subset...Continue Reading
Ukraine has reportedly been building an IT army intending to defend its cyber territory against hackers and threat groups from Russia. The ongoing war has also been tied with cyber-warfare, including wiper malware and DDoS attack campaigns against Ukrainian infrastructure. These unfortunate events led the government of Ukraine to form an army of cyber experts...Continue Reading
Researchers noticed a widespread distributed denial-of-service (DDoS) attack against Ukraine and its government websites. Nonetheless, these DDoS attacks are reportedly unrelated to the recent Gamaredon group attacks against the country. The DDoS attacks conducted by the threat actors had targeted the websites of important sectors of the Ukrainian government, including military websites, public radio, news...Continue Reading