Hackers Exploited Krpano Framework Flaw to Inject Spam Ads on 350+ Websites

Leaked Black Basta Chat Logs Reveal $107M Ransom Earnings and Internal Power Struggles

SOC 3.0 - The Evolution of the SOC and How AI is Empowering Human Talent

New Linux Malware ‘Auto-Color’ Grants Hackers Full Remote Access to Compromised Systems

Three Password Cracking Techniques and How to Defend Against Them

A cross-site scripting (XSS) vulnerability in a virtual tour framework has been weaponized by malicious actors to inject malicious scripts across hundreds of websites with the goal of manipulating search results and fueling a spam ads campaign at scale.
Security researcher Oleg Zaytsev, in a report shared with The Hacker News, said the campaign – dubbed 360XSS – affected over 350 websites,

Headline

Hackers Exploited Krpano Framework Flaw to Inject Spam Ads on 350+ Websites

The Hacker News: Latest News