Chinese hackers attacked NYC MTA using Pulse Secure zero-day

  In April, Chinese threat actors used a Pulse Secure zero-day to compromise New York City’s Metropolitan Transportation Authority (MTA) network.   However, they were unable to cause any data…

Necro Python bot enhanced with new VMWare, server exploits

Necro, a Python-based self-replicating, polymorphic bot, has received new enhancements to increase its chances of infecting susceptible systems and bypassing detection.   The Necro Python bot has been under development…

Fujifilm ransomware attack: shuts down parts of its network globally

Fujifilm, the Japanese multinational conglomerate, has taken down a part of its network as it investigates a possible ransomware attack.   The company, which is best known for its digital…

Norton 360 antivirus to allow you to mine Ethereum crypto

As a way to protect customers from dangerous mining software, NortonLifelock has incorporated the option to mine Ethereum cryptocurrency right within its Norton 360 antivirus software.   This new mining…

Fancy Product Designer – WordPress plugin zero-day vulnerability found

Threat actors have actively exploited a zero-day vulnerability in the Fancy Product Designer plugin for WordPress sites to upload malware.   Fancy Product Designer is a visual product configurator for…

Microsoft warns about phishing attack by Nobelium group spoofing USAID

Microsoft has issued a warning that a Russian-backed hacking outfit known as Nobelium is currently executing a phishing attack and has managed to access the US Agency for International Development’s…