Tag JavaScript

Hackers Target E-Commerce Sites Through Advertising Partner Compromise

In a recent cyber incident, Magecart, a notorious hacking collective, has targeted nearly 277 e-commerce websites, employing sophisticated supply-chain tactics to compromise their systems. Researchers from RiskIQ and Trend Micro have identified this particular effort as the work of “Magecart Group 12,” which specifically infiltrated third-party JavaScript libraries used by…

Read MoreHackers Target E-Commerce Sites Through Advertising Partner Compromise

Alert: New Phishing Scheme Targeting Even the Most Cautious Users

In a concerning trend, cybercriminals are employing increasingly sophisticated phishing techniques that can easily deceive even the most vigilant online users. A recent report highlighted how these malicious actors are capitalizing on the common practice of logging into websites via social media accounts, specifically focusing on services like Facebook. Antoine…

Read More

Alert: New Phishing Scheme Targeting Even the Most Cautious Users

New Vulnerability Discovered: Admin Takeover in Synology’s DiskStation Manager

A medium-severity vulnerability has emerged within Synology’s DiskStation Manager (DSM), posing significant risks to administrative account security. This flaw enables potential attackers to reverse-engineer an administrator’s password, potentially leading to a complete account takeover. According to Sharon Brizinov from Claroty, under specific circumstances, an assailant could leverage the flaw to…

Read MoreNew Vulnerability Discovered: Admin Takeover in Synology’s DiskStation Manager

Caution: Microsoft Detects Surge in Astaroth Fileless Malware Attacks

New Campaign Unveils Widespread Distribution of Astaroth Fileless Malware In a new report from Microsoft, cybersecurity experts reveal the latest details of an extensive campaign involving the notorious Astaroth fileless malware. Initially targeting users in Europe and Brazil earlier this year, this malware has been operational since at least 2017…

Read MoreCaution: Microsoft Detects Surge in Astaroth Fileless Malware Attacks

Ticketmaster Hit by Security Breach – Personal and Payment Information Compromised

Ticketmaster Suffers Data Breach, Exposing Customer Information Ticketmaster, a leading global entertainment ticketing platform, has confirmed a significant security breach that has compromised personal and payment information of its customers. In a recent statement, the company divulged that unauthorized access to sensitive data may have been achieved via a third-party…

Read MoreTicketmaster Hit by Security Breach – Personal and Payment Information Compromised

Lazarus Group Integrates New BeaverTail Variant into Developer Tools

On December 18, 2025, cybersecurity firm Darktrace unveiled new findings regarding a perilous variant of BeaverTail malware, classified as a JavaScript-based information stealer. This malware, associated with North Korea’s infamous Lazarus Group, is part of a growing wave of cyber-attacks directed at the financial and cryptocurrency sectors. The research, disseminated…

Read MoreLazarus Group Integrates New BeaverTail Variant into Developer Tools

Evilnum Hackers Target Financial Institutions with New Python-Based RAT

An adversarial group, known for its focus on the fintech sector since 2018, has updated its tactics by introducing a new Python-based remote access Trojan (RAT) designed to extract sensitive information from compromised systems. The group, identified as Evilnum, has refined its infection strategies and is now deploying the PyVil…

Read MoreEvilnum Hackers Target Financial Institutions with New Python-Based RAT