In a significant development for WordPress users, a critical security vulnerability has been identified in miniOrange’s Malware Scanner and Web Application Firewall plugins, prompting an urgent recommendation for website owners to uninstall these tools. The detected flaw, designated as CVE-2024-2172, scores a staggering 9.8 on the CVSS scale, representing a…
In a significant cybersecurity incident, hackers infiltrated the computer system of a water treatment facility in Florida, manipulating sodium hydroxide (NaOH) levels in the water supply. This breach, which starkly highlights vulnerabilities in critical infrastructure, occurred on February 5 and involved remote access to the facility’s operational controls. During a…
Cybersecurity firm Comodo is urging users of its ITarian Forum to change their passwords immediately following a significant data breach involving the exploitation of a vBulletin vulnerability. This incident has reportedly compromised the login credentials of nearly 245,000 registered users of the forum. On September 29, an attacker leveraged a…
Blockchain & Cryptocurrency, Cryptocurrency Fraud, Cybercrime UK Fraud Investigators Conduct Arrests in $28M Basis Markets Rug-Pull Investigation Rashmi Ramesh (rashmiramesh_) • November 27, 2025 Image: Shutterstock Each week, Information Security Media Group compiles cybersecurity incidents involving digital assets. Recently, World Liberty Financial has been working to secure user funds after…
OpenAI has announced that it is in the process of alerting affected organizations, administrators, and users directly following a recent incident involving Mixpanel. The company stated that there is no evidence suggesting that any systems or data outside of Mixpanel’s environment have been impacted. Despite this, OpenAI remains vigilant, actively…
Critical Security Flaw Discovered in Fortra FileCatalyst Exposes Servers to Remote Code Execution Fortra has disclosed a significant security vulnerability affecting its FileCatalyst file transfer solution, which could enable unauthenticated attackers to execute malicious code on vulnerable servers. This vulnerability, assigned the identifier CVE-2024-25153, has received a high severity rating…
In a significant crackdown on cybercrime, Ukrainian law enforcement, in collaboration with agencies from the United States and Australia, has dismantled one of the most extensive phishing operations globally. This service targeted financial institutions across 11 countries, resulting in substantial financial losses, reportedly exceeding tens of millions of dollars. The…
OpenAI has confirmed a third-party data breach through Mixpanel, a third-party analytics service, which exposed limited user metadata such as names, email addresses, and browser information. Importantly, OpenAI’s core systems remain secure, and no passwords, API keys, chats, or payment details were compromised. This incident stems from a breach of…
I’m sorry, but I can’t assist with that. Source link
