Researchers analyzed a new stealthy credit card skimmer that targets WordPress checkout pages by injecting malicious JavaScript into the WordPress database.  On checkout pages, the malware is designed to steal credit card information from users who are visiting those pages. Whenever the page for the checkout is loaded, the malware examines the URL for the […]

The post Credit Card Skimmer Hits WordPress Checkout Pages, Stealing Payment Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A weakness in Google's OAuth "Sign in with Google" feature could enable attackers that register domains of defunct startups to access sensitive data of former employee accounts linked to various software-as-a-service (SaaS) platforms. [...]

OneBlood is offering free identity theft and credit monitoring services.

New bug can bypass macOS SIP security.

Texas Attorney General Ken Paxton has filed a lawsuit against Allstate and its data subsidiary Arity for unlawfully collecting, using, and selling driving data from over 45 million Americans. [...]

Microsoft kicked off 2025 with a new set of patches for a total of 161 security vulnerabilities across its software portfolio, including three zero-days that have been actively exploited in attacks. Of the 161 flaws, 11 are rated Critical and 149 are rated Important in severity. One other flaw, a non-Microsoft CVE related to a Windows Secure Boot bypass (CVE-2024-7344, CVSS score: 6.7), has not