Web threats

Fake reCAPTCHA forms dupe users via compromised WordPress sites - Threat actors have launched a new campaign that starts with compromised WordPress sites and leads to fake reCAPTCHA sites designed to get visitors to accept web push notifications.
“Chemical attack” email warnings deliver Jester Stealer malware - An email warning of supposed chemical attacks that delivers Jester Stealer malware is being sent to people in Ukraine.
A special browser designed for online banking. Good idea, or not so much? - A specialized banking browser was introduced by a major German bank. While that sounds like a good idea, it looks like they are overestimating what it can do.
A new Magecart campaign is making waves - Researchers have noticed and analyzed a massive number of attacks by one of the Magecart groups that can all be tied into one campaign by the domain they are using.
Card skimmers strike Sotheby’s in Brightcove supply chain attack - Web skimmers gained access to a cloud video platform and used that access to perform a supply chain attack on Sotheby real estate sites.
Has your WordPress site been backdoored by a skimmer? - There are threat actors active that plant backdoors on websites so their malicious code does not get wiped with the next update.
Beware card skimmers this Black Friday - Small and medium-sized retailers are being urged to protect their customers and profits as we plunge into the year's busiest shopping days.
How to defend your website against card skimmers - With Black Friday just around the corner, retail websites can expect a lot of interest from cybercriminals with card skimmers.
Adblocker promises to blocks ads, injects them instead - Researchers uncovered an ad injection campaign based on browser extensions that promise to block advertisements. And they do.

Select your language