Recent Security Flaw Uncovered in LiteSpeed Cache Plugin for WordPress A significant security vulnerability has been identified in the LiteSpeed Cache plugin for WordPress, which could enable unauthorized users to escalate their privileges on affected sites. This flaw, designated as CVE-2023-40000, was discovered in October 2023 during an update to…
Recent investigations reveal an escalating malware campaign targeting network-attached storage (NAS) devices operating on Linux systems. The attacks exploit widely reported vulnerabilities, co-opting these devices into an Internet Relay Chat (IRC) botnet for the purposes of launching distributed denial-of-service (DDoS) attacks and mining Monero cryptocurrency. The malware variant involved is…
The Everest ransomware group has recently made claims regarding a significant breach involving ASUS, one of the largest global hardware and electronics manufacturers. In a post on their dark web leak site, the group asserts they possess over 1TB of stolen data from ASUS, which reportedly includes camera source code.…
MongoDB Unveils Enhanced Security Features at Developer Conference In a recent developer conference held in New York, MongoDB announced the upcoming release of its database management software, MongoDB 4.2, which will introduce several advanced features, most notably Field Level Encryption (FLE), Distributed Transactions, and Wildcard Indexes. These enhancements aim to…
Artificial Intelligence & Machine Learning, Cybercrime, Fraud Management & Cybercrime Chinese Developer Linked to Coupang Data Breach Investigation Mathew J. Schwartz (euroinfosec) • December 2, 2025 Image: Shutterstock South Korea’s leading e-commerce platform, Coupang, has reported a substantial data breach that potentially exposed the personal data of 33.7 million customers—a…
AT&T Reaches Settlement in Major Data Breach Case In a significant development for consumers, AT&T has announced the finalization of its settlement related to a series of data breaches that affected its customers. This settlement, which totals up to $177 million, will provide affected individuals with compensation ranging from $100…
In a recent advisory, cybersecurity and intelligence agencies from the United States and allied nations have alerted users of Ubiquiti EdgeRouters to strengthen their security measures. This advisory follows the disruption of a botnet named MooBot, which consisted of compromised routers and was dismantled by law enforcement during an operation…
Cybersecurity analysts have recently identified a new malware strain dubbed “Raindrop” as part of the SolarWinds supply chain attack, a significant breach that was uncovered late last year. This fourth strain adds to the existing suite of malicious tools, including Sunspot, Sunburst (also referred to as Solorigate), and Teardrop, all…
The Information Commissioner’s Office (ICO) of the UK has levied a groundbreaking fine of £183 million against British Airways for insufficient data protection in a substantial security breach that compromised the personal information of approximately half a million customers. This incident, which unfolded last year, involved unauthorized access to sensitive…
