Fortinet FortiWeb flaw with public PoC exploited to create admin users

A Fortinet FortiWeb path traversal vulnerability is being actively exploited to create new administrative users on exposed ...

Hackers found a way to weaponize CAPTCHA pages, and it's incredibly effective

A year of escalating social-engineering attacks has produced one of the most efficient infection chains observed to date. Known as ClickFix, this method requires only that ...
PCMag

This Windows Update Screen Is Actually a Hacker's Trap

The latest ClickFix attack creates a fake, full-screen Windows OS update through the browser to try and dupe the user into ...
SecurityWeek

How TTP-based Defenses Outperform Traditional IoC Hunting

To fight ransomware, organizations must shift from chasing IoCs to detecting attacker behaviors — Tactics, Techniques, and ...

How a CPU spike led to uncovering a RansomHub ransomware attack

A sudden CPU spike turned out to be the first clue of an in-progress RansomHub ransomware attack. Varonis breaks down how ...