What Is Your Auto-Malware Doing?
Published Mar 21 2025 1:35 PM
Anti-malware collects information about us to help keep us safe. But does it collect more information than is necessary for that role? And what does it do with it? This Insight looks at that and provides suggestions to be safer.
Anti-malware information collection
VexTrio Using 20,000 Hacked WordPress Sites in Traffic Redirect Scheme
Published Mar 21 2025 1:32 PM
WordPress is one of cyberattackers favorite targets. Now we hear of another attack that is using 20,000 WordPress sites to redirect traffic to compromised sites.
WordPress Again
New 'Rules File Backdoor' Attack Lets Hackers Inject Malicious Code via AI Code Editors
Published Mar 21 2025 1:30 PM
Attackers have found a vulnerability in code editors that are AI powered. The vulnerability allows the attackers to insert code that performs malicious actions.
AI Code Editors Hacked
Mobile Jailbreaks Exponentially Increase Corporate Risk
Published Mar 21 2025 1:27 PM
Jailbreak means a user has removed or circumvented safety features of their phone. This is popular among people who want to do things that the phones attempt to prevent. New research shows the jailbroken devices are significantly more likely to be infected with malware.
Jailbroken phones have high risk
Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility
Published Mar 21 2025 1:24 PM
Cisco is a major player in the network space. Attackers have found a way to use the Smart Licensing utility to stage attacks. These vulnerabilities are serious 9.78 on CVSS. Cisco has issued patches. Be sure to apply them.
Serious Cisco Vulnerability
One Token To Rule Them All
Published Mar 14 2025 2:22 PM
A token provides access to a single system, application or site. This makes them desired by cybercriminals. Microsoft has issued their Primary Refresh Token that provides access to all the Microsoft services you have permission to use. One token and access to all. This makes them a big target of attackers.
PRT - convenient but dangerous
A new attack has been found that targets macOS developers using Xcode. Another example of an attack that doesn’t go after single users but a supply chain style attack in that if will infect any user of the app.