Unpatched flaw in Ultimate Member plugin endangers 200,000 WordPress sites, enabling covert creation of admin accounts by hackers.

This vulnerability exists on the binary of filesystem location that can allow threat actors to escalate privileges by abusing the plugin.

The New York City Department of Education (NYC DOE) says hackers stole documents containing the sensitive personal information of up to 45,000 students from its MOVEit Transfer server.

An unknown threat actor is brute-forcing Linux SSH servers to install a wide range of malware, including the Tsunami DDoS (distributed denial of service) bot, ShellBot, log cleaners, privilege escalation tools, and an XMRig (Monero) coin miner.

ASUS has released new firmware with cumulative security updates that address vulnerabilities in multiple router models, warning customers to immediately update their devices or restrict WAN access until they're secured.

Depuis près d'une semaine la ville de Lille mais aussi des entreprises font face à du piratage informatique ou plus exactement des cyberattaques d'ampleur. Ces rançongiciels se multiplient : des pirates bloquent tout et veulent...

Microsoft has now disclosed that DDoS attacks by a murky upstart were to blame for serious service disruptions back in early June.

Several US federal government agencies have been hit in a global cyberattack by Russian cybercriminals that exploits a vulnerability in widely used software, according to a top US cybersecurity agency.

Certains conseils en matière de protection de la vie numérique méritent d’être considérablement nuancés.