The Hacker News

Hackers Exploit WordPress Sites to Power Next-Gen ClickFix Phishing Attacks

Researchers expose new WordPress malware and ClickFix phishing kits exploiting cache smuggling for stealth attacks.
CSO Online

10.0-severity RCE flaw puts 60,000 Redis instances at risk

The critical vulnerability allows attacks to escape the in-memory data store’s Lua sandbox and subsequently execute arbitrary ...
GovInfoSecurity

Hackers Exploit RMM Tools to Deploy Malware

Cybercriminals are hijacking trusted remote monitoring and management tools to bypass defenses, gain persistent access and ...
SecurityWeek

Critical Vulnerability Puts 60,000 Redis Servers at Risk of Exploitation

A critical-severity vulnerability that lingered in Redis for 13 years potentially exposes 60,000 servers to exploitation.

From infostealer to full RAT: dissecting the PureRAT attack chain

Researchers map a campaign that escalated from a Python infostealer to a full PureRAT backdoor — loaders, evasions, and ...