Evidence suggests Russia's SVR is still using 'WellMess' malware, despite US warnings
It's less clear what APT29 might be doing with the hacking tool, after allegedly using it last summer to try to steal COVID-19 research.
How scammers use faked news articles to promote coronavirus 'cures' that only defraud victims
It's the latest effort to separate anxious web users from their hard-earned cash.
Twilio breach spotlights struggle to keep corporate software kits out of the wrong hands
The damage could have been worse if the attack had been targeted.
Magecart hackers have spent weeks lurking on NutriBullet's website
The compromise was ongoing as of this article's publication, according to RiskIQ.
Magecart strikes more than 2 million websites as more groups get involved
Scammers seem only to be accelerating their attacks as attention grows.
Automated Magecart spree hit thousands of sites via misconfigured cloud servers, RiskIQ says
The crooks are scanning the web for vulnerable Amazon Web Services S3 buckets, according to security vendor RiskIQ.