Multiple samples of SpyNote, a sophisticated Android spyware, were discovered in open directories, disguised as legitimate apps like Google Translate,…

A data breach at Radiology Associates of Richmond has exposed the personal and health information of over 1.4 million individuals.———————————————————————————————————————————-Radiology…

Two significant Grafana vulnerabilities that could allow attackers to redirect users to malicious websites and execute arbitrary JavaScript code.The vulnerabilities,…

A sophisticated cyberattack campaign targeting Microsoft SharePoint servers has been discovered exploiting a newly weaponized vulnerability chain dubbed ‘ToolShell,’ enabling…

Popular JavaScript libraries were hijacked this week and turned into malware droppers, in a supply chain attack achieved via targeted…

A PoisonSeed phishing campaign is bypassing FIDO2 security key protections by abusing the cross-device sign-in feature in WebAuthn to trick…

[Cybercrime](https://www.govinfosecurity.com/cybercrime-c-416) , [Fraud Management -& Cybercrime](https://www.govinfosecurity.com/fraud-management-cybercrime-c-409) , [Multi-factor -& Risk-based Authentication](https://www.govinfosecurity.com/multi-factor-risk-based-authentication-c-448)Hackers Exploit FIDO MFA With Novel Phishing Technique======================================================PoisonSeed Threat Actor…

Pierluigi Paganini reports: Japanese authorities released a free decryptor for Phobos and 8Base ransomware, allowing victims to recover files without…

So after putting their lives at risk, the UK’s Ministry of Defence will firmly resist giving anyone even a pence…

Hackers exploited a Fortinet FortiWeb flaw the same day a PoC was published, compromising dozens of systems.————————————————————————————————————Hackers began exploiting a…