Fast-growing e-commerce app Pinduoduo had an EvilParcel stow-away.
Cyble Research & Intelligence Labs analyzes Cl0p ransomware which is rapidly gaining attention for its success in extorting businesses.
Western Digital announced today that its network has been breached and an unauthorized party gained access to multiple company systems.
The California-based computer drive maker and provider of data storage services says in a press release that the network security incident was identified last Sunday, on March 26.
An investigation is in early stages and the company is coordinating efforts with law enforcement authorities.
A new ransomware gang named 'Money Message' has appeared, targeting victims worldwide and demanding million-dollar ransoms not to leak data and release a decryptor.
While many apps collect vast troves of user data, sometimes without explicit consent, experts say Chinese e-commerce giant Pinduoduo has taken violations of privacy and data security to the next level.
QiAnXin Threat Intelligence Center's RedDrip team tracked the relevant events and discovered a batch of attack samples exploiting the CVE-2023-23397 vulnerability. After analyzing these samples and C2 servers, we believe that the exploitation of this vulnerability in the wild has been ongoing since March 2022. In the later stages of the attack, the attackers used Ubiquiti-EdgeRouter routers as C2 servers, and the victims of the attack activity were from multiple countries.
An investigation into the FSB’s digital surveillance and disinformation contractor
A large-scale "QakNote" attack deploys malicious .one files as a novel infection vector
