News

Cryptopolitan on MSN2d
Discord invite link being used to deliver malware targeting crypto wallets
The new malware exploits a weakness in Discord’s invitation system to deliver an information stealer known as Skuld and the ...
Dems demand audit of CVE program as Federal funding remains uncertain
Infosec In Brief A pair of Congressional Democrats have demanded a review of the Common Vulnerabilities and Exposures (CVE) ...
The Hacker News7h
Discord Invite Link Hijacking Delivers AsyncRAT and Skuld Stealer Targeting Crypto Wallets
The fact that payload delivery and data exfiltration occur via trusted cloud services such as GitHub, Bitbucket, Pastebin, and Discord allows the threat actors to blend in with normal traffic and fly ...
Discord flaw lets hackers reuse expired invites in malware campaign
Hackers are hijacking expired or deleted Discord invite links to redirect users to malicious sites that deliver remote access ...
Over 46,000 Grafana instances exposed to account takeover bug
More than 46,000 internet-facing Grafana instances remain unpatched and exposed to a client-side open redirect vulnerability ...
The Hacker News4d
The Hacker News | #1 Trusted Source for Cybersecurity News
Cybersecurity researchers are calling attention to a "large-scale campaign" that has been observed compromising legitimate websites with malicious JavaScript injections. According to Palo Alto ...