Hackers target Microsoft Entra accounts in device code vishing attacks

Threat actors are targeting technology, manufacturing, and financial organizations in campaigns that combine device code phishing and voice phishing (vishing) to abuse the OAuth 2.0 Device ...
Bleeping Computer

Hackers abuse WordPress MU-Plugins to hide malicious code

Hackers are utilizing the WordPress mu-plugins ("Must-Use Plugins") directory to stealthily run malicious code on every page while evading detection. The technique was first observed by security ...

Microsoft says hackers are exploiting critical zero-day bugs to target Windows and Office users

Critical security flaws targeting Windows and Office users allow hackers to take complete control of a victim's computer by clicking a malicious link or opening a file. Patch now.
CoinTelegraph

Nobitex source code leaked after $100M hack by pro-Israel group

Hackers behind the $100 million Nobitex exploit have released the exchange’s full source code, escalating tensions amid the Israel-Iran conflict. Hackers behind a $100 million exploit of Iranian ...
CNBC

'Quishing' scams dupe millions of Americans as cybercriminals turn the QR code bad

To join the CNBC Technology Executive Council, go to cnbccouncils.com/tec Almost three-quarters of Americans (73%) scan QR codes without verification, and more than ...
TechSpot

Dangerous WhatsApp bug on Windows let hackers run malicious code

In context: WhatsApp is one of the most popular communication platforms of all time with around three billion users worldwide. This means that even the slightest security flaw in the app could pose a ...