WordPress membership plugin bug exploited to create admin accounts

Hackers are exploiting a critical vulnerability in the User Registration & Membership plugin, which is installed on more than ...
The Hacker News

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Seven Windows authentication paths bypass MFA protections, enabling credential attacks through AD, NTLM, Kerberos, RDP, SMB, and service accounts.

Europol-coordinated action disrupts Tycoon2FA phishing platform

An international law enforcement operation coordinated by Europol has disrupted Tycoon2FA, a major phishing-as-a-service ...