Ionut Arghire

Romania

Security News Reporter at SecurityWeek

News Reporter

Featured in: Favicon

securityweek.com Favicon

softpedia.com Favicon

thestkittsnevisobserver.com Favicon

news.softpedia.com

Articles

Motors Theme Vulnerability Exploited to Hack WordPress Websites | OpenText Cybersecurity Community

2 days ago | community.opentextcybersecurity.com | Ionut Arghire

Threat actors are exploiting a critical-severity vulnerability in Motors theme for WordPress to change arbitrary user passwords. June 20, 2025 By Ionut Arghire Mass exploitation of a critical-severity vulnerability in the Motors theme for WordPress started several weeks after public disclosure, WordPress security firm Defiant warns.
Godfather Android Trojan Creates Sandbox on Infected Devices

3 days ago | securityweek.com | Ionut Arghire

A recent version of the Godfather Android trojan is deploying a sandbox on the infected devices to hijack banking and cryptocurrency applications, mobile security firm Zimperium warns. Active since at least June 2021 and believed to be based on leaked Anubis banking trojan code, Godfather is known for targeting hundreds of banking and cryptocurrency applications worldwide with web overlays.
Motors Theme Vulnerability Exploited to Hack WordPress Websites

3 days ago | securityweek.com | Ionut Arghire

Mass exploitation of a critical-severity vulnerability in the Motors theme for WordPress started several weeks after public disclosure, WordPress security firm Defiant warns. The Motors theme is aimed at automotive dealership businesses, including car, motorcycle, boat, and car rental dealers, offering pre-built websites and templates, and support for listing, user and dealer management.
Cloudflare Tunnels Abused in New Malware Campaign

3 days ago | securityweek.com | Ionut Arghire

Securonix has uncovered a malware distribution campaign that abuses Cloudflare Tunnel to host payloads on attacker-controlled subdomains. Dubbed Serpentine#Cloud, the campaign relies on a complex infection chain involving shortcut (LNK) files and obfuscated scripts to deliver a Python-based loader that can execute a Donut-packed PE payload in memory.
Hackers Access Legacy Systems in Oxford City Council Cyberattack

3 days ago | securityweek.com | Ionut Arghire

Oxford City Council in the United Kingdom (UK) is notifying current and former employees that their personal information was likely compromised in a recent cyberattack. The incident, the council says, occurred over the weekend of June 7 and 8, when it detected suspicious activity within its network. “Our automated security systems kicked in, removed the presence and minimized the access the attackers had to our systems and databases,” the council said in an incident notice.
New Campaigns Distribute Malware via Open Source Hacking Tools

3 days ago | securityweek.com | Ionut Arghire

Security researchers at Trend Micro and ReversingLabs have uncovered two fresh campaigns targeting red teams, novice cybercriminals, and developer environments via trojanized open source hacking tools. Attributed by Trend Micro to a threat actor named Water Curse, one of the campaigns involved at least 76 GitHub accounts linked to repositories that had malicious payloads injected into build scripts and project files.
Chain IQ, UBS Data Stolen in Ransomware Attack

4 days ago | securityweek.com | Ionut Arghire

Swiss procurement service provider Chain IQ has confirmed falling victim to a cyberattack that led to the theft of customer data. The Zug, Switzerland-based firm says it learned of the incident after a threat actor published data allegedly stolen from its systems on the dark web. “On June 12, 2025, Chain IQ, along with 19 other companies, was the target of a cyberattack that had never before been seen on a global scale. This cyberattack resulted in data theft.
High-Severity Vulnerabilities Patched by Cisco, Atlassian

4 days ago | securityweek.com | Ionut Arghire

Cisco and Atlassian on Wednesday announced the rollout of patches for multiple high-severity vulnerabilities in their products, many leading to denial-of-service (DoS) conditions. Cisco released firmware updates for Meraki devices to resolve a high-severity flaw allowing attackers to cause the AnyConnect VPN server on these products to restart, leading to a DoS condition. Tracked as CVE-2025-20271 (CVSS score of 8.6), the bug can be exploited remotely.
Critical Vulnerability Patched in Citrix NetScaler | OpenText Cybersecurity Community

4 days ago | community.opentextcybersecurity.com | Ionut Arghire

Citrix has released patches for critical- and high-severity vulnerabilities in NetScaler and Secure Access Client and Workspace for Windows. June 18, 2025 By Ionut ArghireCitrix on Tuesday announced patches for four vulnerabilities across three products, including a critical-severity issue in NetScaler ADC and NetScaler Gateway. The critical flaw, tracked as CVE-2025-5777 (CVSS score of 9.3), is described as an out-of-bounds memory read caused by insufficient input validation.
Gerrit Misconfiguration Exposed Google Projects to Malicious Code Injection

4 days ago | securityweek.com | Ionut Arghire

A misconfiguration in the Gerrit collaboration platform could have allowed attackers to inject malicious code into popular Google projects, Tenable reports. Developed by Google, Gerrit is an open source code collaboration and review platform that allows developers to propose and approve code changes before they are merged into projects.