December 2021 – Page 22 – TheCyberThrone

WooCommerce Sites Affected with XSS Bug

The plugin named “Variation Swatches for WooCommerce,” installed across 80K WordPress powered retail sites, has a stored cross-site scripting (XSS) security vulnerability that could allow attackers to inject malicious web…

PravinKarthik December 2, 2021

CrowdStrike Falcon EDR -First Choice to CISA Protecting Critical Endpoints

CrowdStrike announced that the CISA has worked with multiple federal agencies to select CrowdStrike as one of the major platforms to support the endpoint detection and response (EDR) initiative. CrowdStrike…

PravinKarthik December 2, 2021

AT&T Under Bot Attack

Unpatched, old vulnerabilities in networking devices have allowed a noxious malware to infect thousands of AT&T customers in the U.S. The malware basically functions as a backdoor, one that could…

PravinKarthik December 2, 2021

FireEye & McAfee Brings New Security Features For AWS

McAfee and FireEye announced the availability of new cloud security capabilities on AWS and integration with Amazon Inspector, an automated security inspection service. The new capabilities bring FireEye Helix behaviour…

PravinKarthik December 1, 2021

HP Printers Under Shellz Attack !

Two of critical vulnerabilities, collectively tracked as Printing Shellz, discovered that impact 150 multifunction printer models. These vulnerabilities can be exploited by attackers to take control of vulnerable devices and steal…

PravinKarthik December 1, 2021

Sabbath Ransomware !

A new ransomware group called Sabbath (aka UNC2190) has been targeting critical infrastructure in the United States and Canada. The group is a rebrand of Arcane and Eruption gangs, observed…

PravinKarthik December 1, 2021

Malicious Android Apps Stole User Information

A batch of seemingly harmless apps in the Google Play store that were actually malware in disguise and were used to steal people's bank account logins have been removed from…

PravinKarthik December 1, 2021