It's an unusual form of ransomware because it's written in Java, deployed as a trojanised Java Runtime Environment and is compiled in a Java image file (Jimage) to hide the malicious intentions.

Hackers have launched a massive campaign against WordPress websites over the past weekend, attacking old vulnerabilities in unpatched plugins to download configuration files from WordPress sites.

South Korean phone manufacturer LG has released a security update last month to fix the bootloader vulnerability (CVE-2020-12753) that impacts its Android smartphones sold over the past seven years.

The DopplePaymer ransomware gang said it hacked the network of Digital Management Inc. (DMI), an IT service provider that serves multiple Fortune 100 companies and government agencies, including NASA.

The operators of the REvil (Sodinokibi) ransomware gang have launched today an eBay-like auction site where they plan to sell data stolen from the companies they hack.

Cisco has warned customers with Nexus switches running its NX-OS software to install updates to address a serious flaw that allows a remote attacker to bypass network access controls.

Only around a third of users usually change their passwords following a data breach announcement, according to a study from the Carnegie Mellon University's Security and Privacy Institute (CyLab).

If you've used the Unc0ver tool to jailbreak your iOS device, installing iOS 13.5.1 will remove it and block you from jailbreaking it again.

The Joomla team said the leaked website backup file was not encrypted and contained details for roughly 2,700 users who registered on the site.

In 2019, ANAO cyber-resilience audits had found 29% of agencies audited were compliant with the Top Four, whereas 60% of departmental self-assessments found themselves to be compliant.