Meanwhile, EtherumMax got sued over an alleged pump-and-dump scam after using celebs like Floyd Mayweather Jr. & Kim Kardashian to promote EMAX Tokens. [...]

GootLoader hijacks WordPress sites to lure professionals to download malicious sample contract templates. [...]

Scammers easily game YouTube Shorts with viral TikTok content, bilking both creators and users. [...]

Record-number WordPress plugin vulnerabilities are wicked exploitable even with low CVSS scores, leaving security teams blind to their risk. [...]

Attackers are trading millions of records from a trio of pre-holiday breaches on an online forum. [...]

Activision is suing to shut down the EngineOwning cheat-code site and hold individual developers and coders liable for damages. [...]

More than 1.3 million patient records were stolen in the just-disclosed breach, which occurred back in October. [...]

SEGA's disclosure underscores a common, potentially catastrophic, flub — misconfigured Amazon Web Services (AWS) S3 buckets. [...]

Here’s what cybersecurity watchers want infosec pros to know heading into 2022. [...]

The origin of the Monero cryptominer file has been traced to a Russian torrent website, researchers report. [...]

Overtaking the Conti ransomware gang, PYSA finds success with government-sector attacks. [...]

T-Mobile reported blocking 21 billion scam calls during a record-smashing year for robocalls. [...]

Attackers are using the excitement over the new Spider-Man movie to steal bank information and spread malware. [...]

Analysts warn that the attack group, now known as 'Earth Centaur,' is honing its attacks to go after transportation and government agencies. [...]

More than 1.8 million attacks, against half of all corporate networks, have already launched to exploit Log4Shell. [...]

The new campaign masqueraded as an Orange Telecom account management app to deliver the latest iteration of Anubis banking malware. [...]

Analysts find at least 10 Linux botnets actively exploiting Log4Shell flaw. [...]

Scammers are using fake job listings to empty the wallets of young, hopeful victims looking to break into the gaming industry. [...]

U.S. and Canada charge Ottawa man for ransomware attacks, signaling that North America is no cybercriminal haven. [...]

Attackers are milking unpatched Hikvision video systems to drop a DDoS botnet, researchers warned. [...]

Underground arbitration system settles disputes between cybercriminals. [...]

U.S. military acknowledges targeting cybercriminals who launch attacks on U.S. companies. [...]

Omicron COVID-19 variant anxiety inspires new phishing scam offering fake NHS tests to steal data. [...]

Startling triple-digit growth is fueled by easy criminal access to corporate networks and RaaS tools, an analysis found. [...]

The Variation Swatches plugin security flaw lets attackers with low-level permissions tweak important settings on e-commerce sites to inject malicious scripts. [...]