Infosec News

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

CVE News

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

A critical SQL injection vulnerability (CVE-2025-30807) has been identified in the Next-Cart Store to WooCommerce Migration plugin,...

Martin Lewis Warns of Mobile Banking Risks Amid Surging Phone Thefts

Blue-Team

Martin Lewis Warns of Mobile Banking Risks Amid Surging Phone Thefts

Personal finance expert Martin Lewis has issued an urgent warning about the growing threat of mobile banking...

Martin Lewis’ Mobile Security Alert: How to Retrieve and Secure Your IMEI

News

Martin Lewis’ Mobile Security Alert: How to Retrieve and Secure Your IMEI

Financial expert Martin Lewis has issued a security alert urging all mobile phone users to retrieve their...

Illegal Sports Streaming Risks: UK Cities Named as Hotspots for Cyber Threats

News

Illegal Sports Streaming Risks: UK Cities Named as Hotspots for Cyber Threats

Streaming Cheltenham races or top-flight sports through illegal platforms not only risks a £1,000 fine but also...

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

APT-News

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

Russian drone attacks on Kharkiv, Ukraine’s second-largest city, killed at least two civilians and injured dozens, including...

Center Parcs’ X Account Mishap: A Case Study in Digital Hygiene Failures

News

Center Parcs’ X Account Mishap: A Case Study in Digital Hygiene Failures

When Center Parcs UK deactivated its X (formerly Twitter) account in January 2025, it inadvertently created a...

UK Faces “Daily” Hybrid Attacks from Russia, Warns Former Defence Committee Chair

Threat Intelligence

UK Faces “Daily” Hybrid Attacks from Russia, Warns Former Defence Committee Chair

The former Chairman of the UK’s Defence Select Committee, Tobias Ellwood, has issued a stark warning about...

Massive JavaScript Injection Campaign Redirects 150,000 Sites to Gambling Platforms

Threat Intelligence

Massive JavaScript Injection Campaign Redirects 150,000 Sites to Gambling Platforms

A widespread cyberattack has compromised over 150,000 legitimate websites by injecting malicious JavaScript that redirects visitors to...

Meta AI’s European Expansion: Features, Limitations, and Security Implications

News

Meta AI’s European Expansion: Features, Limitations, and Security Implications

Meta has officially launched its AI assistant, Meta AI, across 41 European countries, marking a significant step...

Massive JavaScript Injection Campaign Targets 150,000 Sites to Redirect Users to Chinese Gambling Platforms

Threat Intelligence

Massive JavaScript Injection Campaign Targets 150,000 Sites to Redirect Users to Chinese Gambling Platforms

A widespread cyber campaign has compromised approximately 150,000 legitimate websites by injecting malicious JavaScript code that redirects...

Hijacked npm Packages Used to Steal API Keys via Obfuscated Scripts

Threat Intelligence

Hijacked npm Packages Used to Steal API Keys via Obfuscated Scripts

Cybersecurity researchers have uncovered a campaign involving hijacked npm packages, some over nine years old, that were...

Exim Use-After-Free Vulnerability (CVE-2025-30232) Poses Privilege Escalation Risk

CVE News

Exim Use-After-Free Vulnerability (CVE-2025-30232) Poses Privilege Escalation Risk

A high-severity vulnerability (CVE-2025-30232) has been identified in Exim mail servers, affecting versions 4.96 through 4.98.1. The...

Tencent’s $1.25B Investment in Ubisoft: Strategic Implications for Gaming and Cybersecurity

News

Tencent’s $1.25B Investment in Ubisoft: Strategic Implications for Gaming and Cybersecurity

Chinese tech giant Tencent has acquired a 25% stake in a newly formed Ubisoft subsidiary for $1.25...

Federal Judge Orders Trump Administration to Preserve Signal Messages Amid Legal Battle Over Record-Keeping Violations

Cyber Laws & Regulations

Federal Judge Orders Trump Administration to Preserve Signal Messages Amid Legal Battle Over Record-Keeping Violations

A federal judge has issued a directive to the Trump administration to preserve Signal messages exchanged among...

MORSECORP Inc. Settles $4.6 Million Cybersecurity Fraud Case with U.S. Government

Cyber Laws & Regulations

MORSECORP Inc. Settles $4.6 Million Cybersecurity Fraud Case with U.S. Government

Defense contractor MORSECORP Inc. has agreed to pay $4.6 million to resolve allegations of cybersecurity fraud involving...

Indonesian E-Learning Platform Reportedly Targeted in Cybersecurity Incident

News

Indonesian E-Learning Platform Reportedly Targeted in Cybersecurity Incident

Reports indicate that a prominent Indonesian educational technology platform may have been the target of a cybersecurity...

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

APT-News

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

Security researchers have identified a new campaign where threat actors are leveraging Microsoft’s .NET Multi-platform App UI...

Upcoming Book Talk Events for “Chasing Shadows” – March 2024

News

Upcoming Book Talk Events for “Chasing Shadows” – March 2024

Join us for an engaging series of book talks in March 2024 featuring discussions on Chasing Shadows,...

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

Blue-Team
Exploitation

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

The National Cyber Security Centre (NCSC) has issued a warning about the increasing use of malicious software...

Introducing PDNS for Schools: A Free Cybersecurity Solution to Protect UK Education

Blue-Team
Red-Team
Security Tools & Research
Threat Intelligence

Introducing PDNS for Schools: A Free Cybersecurity Solution to Protect UK Education

In an era where schools increasingly rely on digital tools for education, cybersecurity threats have become a...

Posts pagination

1 2 Next

Infosec News

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

Martin Lewis Warns of Mobile Banking Risks Amid Surging Phone Thefts

Martin Lewis’ Mobile Security Alert: How to Retrieve and Secure Your IMEI

Illegal Sports Streaming Risks: UK Cities Named as Hotspots for Cyber Threats

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

Center Parcs’ X Account Mishap: A Case Study in Digital Hygiene Failures

UK Faces “Daily” Hybrid Attacks from Russia, Warns Former Defence Committee Chair

Massive JavaScript Injection Campaign Redirects 150,000 Sites to Gambling Platforms

Meta AI’s European Expansion: Features, Limitations, and Security Implications

Massive JavaScript Injection Campaign Targets 150,000 Sites to Redirect Users to Chinese Gambling Platforms

Hijacked npm Packages Used to Steal API Keys via Obfuscated Scripts

Exim Use-After-Free Vulnerability (CVE-2025-30232) Poses Privilege Escalation Risk

Tencent’s $1.25B Investment in Ubisoft: Strategic Implications for Gaming and Cybersecurity

Federal Judge Orders Trump Administration to Preserve Signal Messages Amid Legal Battle Over Record-Keeping Violations

MORSECORP Inc. Settles $4.6 Million Cybersecurity Fraud Case with U.S. Government

Indonesian E-Learning Platform Reportedly Targeted in Cybersecurity Incident

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

Upcoming Book Talk Events for “Chasing Shadows” – March 2024

You may have missed

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

WpTravelly Plugin Vulnerability Exposes WordPress Sites to Object Injection Attacks

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)