Researchers Expose Infrastructure Behind WP-SHELLSTORM Webshell Campaign
An exposed attacker server gave researchers a rare look inside WP-SHELLSTORM, a large-scale operation that allegedly compromised thousands of WordPress...
An exposed attacker server gave researchers a rare look inside WP-SHELLSTORM, a large-scale operation that allegedly compromised thousands of WordPress...
DHS is investigating a confirmed cyber incident involving the Homeland Security Information Network, though officials say there is no evidence...
The FBI has published a FLASH advisory detailing TeamPCP's software supply chain attacks, malware, extortion activity, and recommendations for affected...
NAIC has confirmed a cyberattack exploiting an Oracle PeopleSoft zero-day, disrupting insurer investment designation services following earlier claims by ShinyHunters.
International law enforcement disrupted SocGholish infrastructure linked to Evil Corp, cleaned nearly 15,000 websites, and identified 154,000 impacted email addresses.
A compromise of Klue’s integration infrastructure allowed attackers to steal OAuth tokens and access Salesforce environments belonging to multiple organizations.
Researchers say a credential abuse campaign targeted tens of thousands of Fortinet devices, potentially exposing government and enterprise networks worldwide.
Mount Royal University says a cyberattack disrupted multiple campus services as investigators work to determine whether any data was accessed.
Check Point says attackers have exploited CVE-2026-50751 since May, with one intrusion linked to a Qilin ransomware affiliate.
Researchers have linked ShinyHunters to active exploitation of a critical Oracle PeopleSoft vulnerability affecting universities and other organizations.