JavaScript – Computer Security Articles

MalwareBytes Security

“Beautiful Cookie Consent Banner” WordPress plugin vulnerability: Update now!

May 25, 2023 admin beautiful cookie consent banner, Business, exploit, JavaScript, plugin, update, Vulnerability, website, wordpress, XSS

Categories: Business

Tags: beautiful cookie consent banner

Tags: Wordpress

Tags: plugin

Tags: vulnerability

Tags: exploit

Tags: XSS

Tags: javascript

Tags: update

Tags: website

We take a look at a vulnerability in a popular WordPress plugin. It’s been fixed, but you’ll need to update as soon as you can!

(Read more…)

The post “Beautiful Cookie Consent Banner” WordPress plugin vulnerability: Update now! appeared first on Malwarebytes Labs.

MalwareBytes Security

VASTFLUX ad fraud massively affected millions of iOS devices, dismantled

January 24, 2023 admin ad fraud, apple, c2, command and control, fast flux, human, iOS, JavaScript, JS, malvertising, matryoshka, news, vast, vastflux, video ad serving template

Categories: Apple

Categories: News

Tags: VASTFLUX

Tags: HUMAN

Tags: fast flux

Tags: VAST

Tags: Matryoshka

Tags: JavaScript

Tags: JS

Tags: iOS

Tags: ad fraud

Tags: malvertising

Tags: Video Ad Serving Template

Tags: VAST

Tags: command-and-control

Tags: C2

An evasive ad fraud campaign affecting iOS users has come to light. It’s called VASTFLUX.

(Read more…)

The post VASTFLUX ad fraud massively affected millions of iOS devices, dismantled appeared first on Malwarebytes Labs.

QuickHeal Security

QBOT – A HTML Smuggling technique to target victims

November 11, 2022 admin #bankingtrojan, #financialfraud, #htmlsmuggling, #pinkslipbot, Android, banking Trojan, cyberawareness, cybercrime, hacking, hmtl smuggling, html attack, JavaScript, malspam, malware, phishing, Qbot, quackbot, quickheal, ransomware, Security, smartphone security, Trojan

Credit to Author: Anjali Raut| Date: Fri, 11 Nov 2022 11:02:59 +0000

QBot, also known as Qakbot, QuackBot, and Pinkslipbot, is a Banking Trojan that was first observed in 2007….

The post QBOT – A HTML Smuggling technique to target victims appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.

MalwareBytes Security

Tax refund phish logs keystrokes to swipe personal details

September 21, 2022 admin Greece, Greek, JavaScript, keylogger, news, phish, phishing, SCAM, tax refund

Categories: News

Tags: tax refund

Tags: phish

Tags: phishing

Tags: scam

Tags: greece

Tags: greek

Tags: javascript

Tags: keylogger

The phishing mails rely on that time-honoured tradition of bogus tax returns and non-existent refunds.

(Read more…)

The post Tax refund phish logs keystrokes to swipe personal details appeared first on Malwarebytes Labs.

MalwareBytes Security

TikTok vulnerability could have allowed hijackers to take over accounts

September 1, 2022 admin exploit, JavaScript, microsoft, news, tik-tok, Vulnerability

Categories: News

Tags: Exploit

Tags: vulnerability

Tags: Tik-Tok

Tags: Microsoft

Tags: JavaScript

We take a look at a TikTok exploit discovered by Microsoft and passed on to the social media giant to have fixed.

(Read more…)

The post TikTok vulnerability could have allowed hijackers to take over accounts appeared first on Malwarebytes Labs.

MalwareBytes Security

Warning for WordPress admins: uninstall the Modern WPBakery plugin immediately!

July 19, 2022 admin compromise, CVE, exploit, hijack, JavaScript, Malwarebytes news, modern wpbakery, plugin, wordpress

Credit to Author: Christopher Boyd| Date: Tue, 19 Jul 2022 12:07:10 +0000

We take a look at a WordPress plugin, abandoned and open to JavaScript related exploitation. Uninstall it now!

The post Warning for WordPress admins: uninstall the Modern WPBakery plugin immediately! appeared first on Malwarebytes Labs.

MalwareBytes Security

Fake reCAPTCHA forms dupe users via compromised WordPress sites

May 16, 2022 admin CAPTCHA, JavaScript, local.drakefollow.com, push notifications, recaptcha, web threats, wordpress

Credit to Author: Pieter Arntz| Date: Mon, 16 May 2022 11:54:12 +0000

Threat actors have launched a new campaign that starts with compromised WordPress sites and leads to fake reCAPTCHA sites designed to get visitors to accept web push notifications.

The post Fake reCAPTCHA forms dupe users via compromised WordPress sites appeared first on Malwarebytes Labs.

QuickHeal Security

Multi-Staged JSOutProx RAT Targets Indian Co-operative Banks and Finance Companies

February 2, 2022 admin #jsoutprox, Attacks, bank, cybersecurity, India, JavaScript, malware, news, Rat

Credit to Author: Sameer Patil| Date: Thu, 21 Oct 2021 12:38:32 +0000

Quick Heal Security Labs has been monitoring various attack campaigns using JSOutProx RAT against different SMBs in…

The post Multi-Staged JSOutProx RAT Targets Indian Co-operative Banks and Finance Companies appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.

← Previous