Scientists have created a new type of super-strong antibody that could significantly enhance cancer immunotherapy. In an exciting advance for cancer treatment, scientists have developed a new type of powerful antibody that could help the immune system fight cancer more effectively. Researchers
Hazy Hawk hijacked CDC and Deloitte subdomains via DNS flaws, flooding users with scams and malware.
Over 100 malicious Chrome extensions since Feb 2024 impersonated real tools to steal data and execute code.
SideWinder exploited CVE-2017–0199 to deploy StealerBot malware in South Asian government networks.
Cybersecurity researchers are calling attention to a new Linux cryptojacking campaign that’s targeting publicly accessible Redis servers.
The malicious activity has been codenamed RedisRaider by Datadog Security Labs.
“RedisRaider aggressively scans randomized portions of the IPv4 space and uses legitimate Redis configuration commands to execute malicious cron jobs on vulnerable systems,” security researchers Matt Muir and Frederic Baguelin said.
Malicious open source packages abused social media apis and implanted backdoors linked to hacktivist group.
A critical privilege escalation vulnerability has been discovered in the premium WordPress theme Motors, which allows unauthenticated attackers to hijack administrator accounts and take complete control of websites.
Developed by StylemixThemes, Motors is one of the top-selling automotive themes for the WordPress platform. It is very popular among automotive businesses such as car dealerships, rental services, and used vehicle listing platforms.
It has over 22,300 sales on the Envato market, with hundreds of user reviews and thousands of comments, indicating a highly active community around it.
SK Telecom says that a recently disclosed cybersecurity incident in April, first occurred all the way back in 2022, ultimately exposing the USIM data of 27 million subscribers.
SK Telecom is the largest mobile network operator in South Korea, holding roughly half of the national market.
On April 19, 2025, the company detected malware on its networks and responded by isolating the equipment suspected of being hacked.
While the documents refer to the education company only as “Victim-2” and the U.S. attorney’s office declined to name the victim, a person familiar with the matter told NBC News that it is PowerSchool. The hack of PowerSchool last year is believed to be the largest breach of American children’s sensitive data to date.
According to his plea agreement, Lane admitted obtaining information from a protected computer and aggravated identity theft and agreed not to challenge a prison sentence shorter than nine years and four months. He got access simply by trying an employee’s stolen username and password combination, the complaint says, echoing a private third-party assessment of the incident previously reported by NBC News.
