threats

Today we’re talking about crypto drainers — one of the most serious threats to crypto owners — and offer tips on fending it off.

Getting what you pay for: cracked macOS apps fetch malicious code from DNS records to steal crypto

Time to update Fortra GoAnywhere MFT: an exploit has been developed for a critical vulnerability that allows attackers to bypass authentication and create admin accounts.

Ethical hackers told 37C3 how they found a few eye-openers while breaking DRM to fix trains.

Cars are sharing much more information about you than you realize

Attackers are hijacking hotel accounts on Booking.com, and stealing their clients’ banking data through its internal messaging system.

How malicious extensions steal cryptocurrency, hijack accounts in games and social networks, manipulate search results, and display intrusive ads.

A researcher has discovered a vulnerability in the Bluetooth protocol implementations for Android, macOS, iOS, and Linux, allowing devices to be hacked remotely.

Are Macs as safe as their owners think they are? A few recent stories about malware targeting macOS users.

Android 13 and 14 have a feature called Restricted Settings. We explain its purpose, and how malicious applications bypass it.

Typical security issues of WordPress, and how they can be addressed to protect your website or online store from cybercriminals.

Espionage operations to hack corporate routers are now commonplace — and all organizations need to be aware of this.

How attackers use infected archives and malicious browser extensions to steal Facebook Business accounts.

Our researchers discovered spyware-infected WhatsApp modifications distributed through Telegram channels and websites with WhatsApp mods.

We discuss what zero-click attacks are, why they’re dangerous, and how to protect your company from them.

A look at some recent cases of Android malware infiltrating the most official of official app stores — Google Play.

Buying a cheap Android device can be an expensive mistake if it fails to perform its primary function or happens to be infected with viruses right out of the box.

The three most dangerous Android features that make your smartphone much more vulnerable to malware.

It’s time to update Confluence Data Center and Confluence Server: they contain a serious vulnerability that allows unauthorized creation of administrator accounts.

Examples of how QR codes in emails are used for phishing.

We take an in-depth look at securing and configuring containerization systems.