Serious Security Vulnerability Discovered in LiteSpeed Cache Plugin for WordPress A critical security vulnerability has been identified in the LiteSpeed Cache plugin for WordPress, posing significant risk to websites using the application. The flaw allows unauthenticated attackers to escalate their privileges, potentially granting them administrative access and enabling harmful interventions…
Microsoft has issued a stark warning concerning an extensive credential phishing campaign that exploits open redirector links in email communications. This tactic aims to deceive users into visiting malicious sites while circumventing traditional security measures. According to a report from the Microsoft 365 Defender Threat Intelligence Team, attackers combine these…
US Immigration Agency Proposes Privately-Managed Statewide Transportation System for Detained Immigrants in Texas The US Immigration and Customs Enforcement (ICE) is considering the establishment of a privately-operated statewide transportation network in Texas designed to facilitate the movement of immigrants detained across its 254 counties into various ICE facilities. This plan…
Cybersecurity Alert: Daixin Team Targets U.S. Healthcare Sector with Ransomware Attacks Recent warnings from U.S. cybersecurity and intelligence agencies have highlighted alarming activities linked to a cybercriminal group known as the Daixin Team. This group, specializing in ransomware and data extortion, has zeroed in on the healthcare sector since at…
Blockchain & Cryptocurrency, Cryptocurrency Fraud, Fraud Management & Cybercrime Also: LastPass Issues Phishing Warning, Trump Appoints New CFTC Head Rashmi Ramesh ( rashmiramesh_) • October 30, 2025 Image: Shutterstock Every week, Information Security Media Group compiles recent incidents in the realm of cybersecurity concerning digital assets. This week, the CEO…
Reputation.com has left a staggering 320GB of logs exposed online, encompassing approximately 120 million records. This significant breach includes sensitive information such as cookies, timestamps, and unique identifiers, which pose a severe risk to account security for numerous high-profile brands. Despite being alerted to this vulnerability by cybersecurity outlet Cybernews,…
Microsoft Uncovers Chinese Botnet Targeting Organizations with Evasive Password Spray Attacks Microsoft has reported the activity of a Chinese threat actor known as Storm-0940, which is employing a sophisticated botnet identified as Quad7. This botnet has been linked to a series of highly evasive password spray attacks aimed at stealing…
In a concerning development for cybersecurity, a series of spear-phishing attacks have emerged, utilizing weaponized Microsoft Word documents themed around Windows 11 Alpha. Researchers from the cybersecurity firm Anomali reported the campaigns involved Visual Basic macros designed to deploy malicious payloads, including a JavaScript implant, against a point-of-sale (PoS) service…
Ribbon Communications, a prominent American telecommunications company responsible for facilitating major phone and data networks globally, has disclosed a significant security breach. The firm has confirmed that nation-state hackers, believed to have affiliations with an unnamed foreign government, infiltrated its systems and remained undetected for nearly a year. Headquartered in…
