News

The Hacker News16d
150,000 Sites Compromised by JavaScript Injection Promoting Chinese Gambling Platforms
An ongoing campaign that infiltrates legitimate websites with malicious JavaScript injects to promote Chinese-language ...
Bleeping Computer20d
FBI warnings are true—fake file converters do push malware
The FBI is warning that fake online document converters are being used to steal peoples’ information and, in worst-case scenarios, to deploy ransomware on victims' devices. The warning came last ...
SecurityWeek23d
In Other News: Critical Chrome Bug, Capital One Hacker Resententencing, Story of Expat Flaw
Noteworthy stories that might have slipped under the radar: Capital One hacker’s sentence reversed, Google patches critical Chrome vulnerability, the story of an Expat flaw. SecurityWeek’s ...
techzine23d
Critical vulnerability in WP Ghost plugin affects over 200,000 websites
A serious vulnerability in the popular WordPress security plugin WP Ghost allows attackers to gain unauthorized website access. The Local File Inclusion (LFI) vulnerability can lead to Remote Code ...
techzine23d
DollyWay malware has been hunting WordPress sites for eight years
In the space of eight years, the so-called DollyWay malware has managed to infect more than 20,000 WordPress sites. Affected targets redirect internet visitors to scam sites. It forms the basis for ...
TechRadar24d
Over 20,000 WordPress sites hit by damaging malware campaign
GoDaddy found a malicious campaign infecting 20,000 WordPress sites It is called DollyWay, and it is super persistent DollyWay redirects visitors to fake gambling and crypto sites A long-running ...
Bleeping Computer24d
Malware campaign 'DollyWay' breached 20,000 WordPress sites
A malware operation dubbed 'DollyWay' has been underway since 2016, compromising over 20,000 WordPress sites globally to redirect users to malicious sites. The campaign has evolved significantly ...