AppleInsider

Hackers used faked Apple & Yahoo infrastructure to hide malware

Published indicators of compromise included malicious DLL hashes, spoofed CDN infrastructure, and infrastructure connected to the activity. MITRE ATT&CK mappings tied the operation to DLL injection, ...
techtimes

Ghost CMS SQL Injection Hits 700 Sites: Harvard, DuckDuckGo Serve Fake Cloudflare Malware

An unpatched SQL injection vulnerability in the Ghost content management system has been weaponized in an active, large-scale cyberattack that has compromised more than 700 websites worldwide — ...