Hackers have found a new way to hide backdoors in WordPress websites by using something called MU-Plugins. This method is dangerous because it gives them admin-level access while staying hidden from the website owner. The tactic was recently discovered and is now raising alarms in the cybersecurity community. MU-Plugins, or Must-Use Plugins, are a special … Continued
A new cybercrime trend has surfaced in 2025, revealing that dark web hackers are now posing as underground travel agents. According to a report by Trustwave SpiderLabs, these actors are using stolen credit cards, airline miles, and hotel loyalty points to make real bookings, which they then sell at heavy discounts. This activity has transformed … Continued
The U.S. government has officially issued a warning about a dangerous wave of ransomware attacks linked to a cybercriminal group called Interlock. This alert was released by CISA in partnership with the FBI, Department of Health and Human Services (HHS), and MS-ISAC. The threat mainly targets businesses and critical infrastructure, especially in North America and … Continued
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert after discovering that Chinese state-linked hackers are actively exploiting serious vulnerabilities in Microsoft SharePoint Server. These flaws, identified as CVE‑2025‑49704, CVE‑2025‑49706, and later CVE‑2025‑53770 and CVE‑2025‑53771, allow attackers to bypass authentication and remotely execute code on unpatched SharePoint servers. The exploitation of … Continued
A well-known Chinese state-sponsored hacking group, APT41, has been linked to a sophisticated cyberattack targeting an African government IT service provider. This marks the first time APT41 has been publicly reported operating in the African region, and cybersecurity experts believe it signals a strategic shift in their global operations. The attack was discovered by researchers … Continued
A new kind of cyber threat is slowly creeping into the world of artificial intelligence, and it’s more dangerous than we expected. Security researcher Hariharan Shanmugam has revealed that malicious implants are now being discovered inside AI components like models, images, and audio files. These implants are capable of carrying harmful code that hides inside … Continued
Microsoft has released an emergency security patch for a serious vulnerability in its SharePoint Server software. This flaw, tracked as CVE‑2025‑53770, is already being actively used by hackers to launch cyberattacks. The vulnerability allows attackers to run malicious code remotely, which could give them full access to affected systems. The issue affects on-premises versions of … Continued
Black Hat USA 2025 lands in Las Vegas from August 2 to 7 at Mandalay Bay, featuring Summit Day (Aug 5), over 100 Briefings, dozens of open-source demos in Arsenal, and a buzzing Business Hall where innovation meets impact. This year, we’re spotlighting the most exciting product launches set to reshape cybersecurity. Here’s what you … Continued
Black Hat is where the cybersecurity world comes to life, raw and unfiltered, and right on the edge. Elite hackers, global researchers, Fortune 500 companies, and federal agencies all come together to share breakthroughs, expose vulnerabilities, and rethink what is possible. If you want a front row seat to the real future of infosec, this … Continued
Imagine this: a piece of malware that doesn’t just follow instructions, it learns from its mistakes, adapts, evolves, and comes back smarter each time. Sounds like something out of a sci-fi thriller, right? Well, it’s not. This is real, and it made headlines at Black Hat USA 2025, the world’s most high-profile cybersecurity conference. This … Continued
