Zero‑day in popular WordPress plugin exploited to take over websites
Websites using Fancy Product Designer are susceptible to remote code execution attacks even if the plugin is deactivated
Latest Articles
ESET Threat Report T 1 2021
A view of the T 1 2021 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts
5 common scams targeting teens – and how to stay safe
From knock-off designer products to too-good-to-be-true job offers, here are five common schemes fraudsters use to trick teenagers out of their money and sensitive data
Don’t feed the trolls and other tips for avoiding online drama
You may not be able to escape internet trolls, but you have a choice about how you will deal with them – here’s how you can handle trolls without losing your cool
Week in security with Tony Anscombe
You, too, may be vulnerable to SIM swap attacks – How to defend yourself against rom-cons – Zero day in macOS allowed malware to take secret screenshots
I hacked my friend’s website after a SIM swap attack
Here’s how easily your phone number could be stolen, why a successful SIM swap scam is only the beginning of your problems, and how you can avoid becoming a victim of the attack
Bluetooth bugs could allow attackers to impersonate devices
Patches to remedy the vulnerabilities should be released over the coming weeks
Apple fixes macOS zero‑day bug that let malware take secret screenshots
You would do well to update to macOS Big Sur 11.4 post-haste
Rom‑con: How romance fraud targets older people – and how to stay safe
Online dating scams often follow the same script – here’s what senior citizens should watch out for and how their younger relatives can help them avoid falling victim
Week in security with Tony Anscombe
How stalkerware puts the stalkers' own data at risk – Watch out for FluBot – Building security into critical infrastructure
Android 12 will give you more control over how much data you share with apps
An all-new privacy dashboard and better location, microphone and camera controls are all aimed at curbing apps’ data-slurping habits
Colonial Pipeline attack: Hacking the physical world
The attack is a reminder of growing cyberthreats to critical infrastructure while also showing why providers of essential services are ripe targets for cybercriminals
Scams target families of missing persons, FBI warns
Con artists use social media to find and target victims for various nefarious ends, including to extort relatives of missing persons
Take action now – FluBot malware may be on its way
Why FluBot is a major threat for Android users, how to avoid falling victim, and how to get rid of the malware if your device has already been compromised
Android stalkerware threatens victims further and exposes snoopers themselves
ESET research reveals that common Android stalkerware apps are riddled with vulnerabilities that further jeopardize victims and expose the privacy and security of the snoopers themselves
Verizon’s 2021 DBIR: Phishing and ransomware threats looming ever larger
The report provides unique insights into how the COVID-19 pandemic affected the data breach landscape
Week in security with Tony Anscombe
Join ESET Research at RSA Conference 2021 – WhatsApp to restrict features for some users – 1 million apps rejected from the App Store last year
European police bust major online investment fraud ring
The operation was carried out against an organized group that used online trading platforms to swindle victims out of US$36 million
1 million risky apps rejected or removed from Apple’s App Store in 2020
Apple also claims to have foiled US$1.5 billion worth of potentially fraudulent transactions
ESET Research goes to RSA Conference 2021 with two presentations
We will explore two threats – Android stalkerware and XP exploits