Hackers exploit security testing apps to breach Fortune 500 firms

Threat actors are exploiting misconfigured web applications used for security training and internal penetration testing, such ...

Credential-stealing Chrome extensions target enterprise HR platforms

Malicious Chrome extensions on the Chrome Web Store masquerading as productivity and security tools for enterprise HR and ERP ...
SecurityWeek

‘SolyxImmortal’ Information Stealer Emerges

The Python-based information stealer SolyxImmortal uses legitimate APIs and libraries for stealthy data gathering and ...

Under Armour Ransomware Attack Exposes 72M Email Addresses

Many records also contained additional personal information such as names, dates of birth, genders, geographic locations, and ...
Infosecurity Magazine

Malicious Google Chrome Extensions Hijack Workday and Netsuite

Users of widely used HR and ERP platforms targeted with malicious extensions which were available in the Chrome Web Store ...