Sysrv botnet is out to mine Monero on your Windows and Linux servers
The Sysrv botnet has been developing over the last years, and has become a multi-platform botnet that specializes in Monero cryptomining.
Fake reCAPTCHA forms dupe users via compromised WordPress sites
Threat actors have launched a new campaign that starts with compromised WordPress sites and leads to fake reCAPTCHA sites designed to get visitors to accept web push notifications.
Ukraine government and pro-Ukrainian sites hit by DDoS attacks
We can’t tell which party made the first move, but both the pro-Ukraine and Russian sides have been exchanging DDoS attacks.
Attacks on Ukraine communications are a major part of the war
Along with the physical war in Ukraine there are accompanying cyberattacks, and communication lines are among the primary targets.
A week in security (Dec 6 – 12)
The most important and interesting security stories from the last seven days.
Has your WordPress site been backdoored by a skimmer?
There are threat actors active that plant backdoors on websites so their malicious code does not get wiped with the next update.
Emotet’s back and it isn’t wasting any time
The world’s most notorious malware is back and it’s growing fast. What are researchers seeing and what does it mean?
A week in security (Nov 15 – Nov 21)
The most important and interesting security stories from the last seven days.
Fake ransomware warnings hit WordPress sites: How to stay safe
CMS hijackers want WordPress site owners to believe their site has been hit by ransomware. What’s actually going on?
Update your OptinMonster WordPress plugin immediately
We look at a recent WordPress plugin compromise, explain what it is, and also what you have to do to ensure your blog and visitors are safe.