WordPress Loginizer Bugs Let Attackers Perform SQL Injection
A fairly famous WordPress plugin named Loginizer has bugs of Stored XSS and for performing an SQL injection. These were fixed in the recent...
SendGrid Legacy Accounts Used by Hackers to Steal Data in a HMRC Phishing Campaign
A phishing campaign reported by BleepingComputer says that threat actors are abusing SendGrid's Infrastructure for sending phishing emails to take payers. The redirecting phishing...
Telegram ‘People Nearby’ Feature Can Let Hackers Detect Users Precise Location
Features that sometimes released for adding functionality could turn to be loopholes. A feature that Telegram launched recently is one like that - called...
Zee5 Data Breach: PII of 9 Million Zee5 Users’ Allegedly Leaked Online
Zee5, an Indian OTT platform with over 150 million users had a part of its userbase's data leaked again. Found by Rajshekhar Rajaharia, an...
Twitter Accidentally Sends Account Confirmation Emails Seemed Like a Phishing Attack
Twitter on Thursday night caused havoc to few users by accidentally sending them e-mails asking them to confirm their account. The email received was...
Morgan Stanley’s Customers Data Breached Through a Third-Party Service
Morgan Stanley, the US investment banking firm, has just reported a data breach incident to affected customers.
The notification includes customers' personal details in Morgan...
CISA Listed 290 Vulnerabilities Affecting Federal Civil Agencies
The CISA has released this year's first binding operational directive (BOD), which notes about 290 vulnerabilities affecting the federal civil information systems.
The agency warned...
El Salvador Journalists & Govt Officials Infected with Pegasus Spyware
After a two-year-long investigation, the researchers from Citizen Lab and Access Now have found that several of El Salvador's government officials and the local...
IoT Remote Control Vulnerabilities Puts Patient Data at Risk
Hundreds of thousands of medical devices are vulnerable to exploitation, arising from many security vulnerabilities spotted by CyberMDX researchers.
As per them, a set of...
Google Claims That Half of Zero-Day Bugs Are Due to Poor Patches
Researchers at Google Project Zero noted that half of the zero-day bugs found in H1 2022 - that were exploited before a patch was...