Decades-old command resurfaces in modern malware campaigns

The "finger" command remains exploitable for remote code execution even after years of disuseAttackers use batch scripts to ...

W3 Total Cache WordPress plugin vulnerable to PHP command injection

WordPress plugin can be exploited to run PHP commands on the server by posting a comment that contains a malicious payload.
The Hacker News

Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices

Eternidade Stealer spreads via WhatsApp hijacking, using Python scripts and IMAP-driven C2 updates to target Brazilian users.
CyberGuy

Hackers turn “I’m not a robot” captchas into cyber traps

Russian hackers use fake “I’m not a robot” tests to spread malware. Learn how to spot these traps and protect your data today ...