Wardriving assessment across Mexico: Preparing for the 2026 World Cup

Introduction Mexico is one of the host countries for the 2026 FIFA World Cup, with matches to be played in three major cities: Mexico City, Monterrey, and Guadalajara. These locations are expected to see a large influx of international visitors, increasing the potential security risks. Many of...

A week in security (May 4 – May 10)

Last week on Malwarebytes Labs: Microsoft says Edge’s plaintext password behavior is "by design" ShinyHunters escalates Canvas attacks with school login defacements Massive AI investment scam network spans 15,500 domains If a fake moustache can fool age checks, is the Online Safety Act working?...

The 2026 World Cup scam economy is already running before the first whistle

The FIFA World Cup 2026 is scheduled to begin June 11 across the US, Canada, and Mexico. The web is filling with sites impersonating ticket vendors, telecoms, sticker publishers, toy manufacturers, immigration services, and crypto projects, all linked to the World Cup brand. Together, they map ou...

Robot Dogs Are on Going on Patrol at the 2026 World Cup in Mexico

The Mexican city of Guadalupe, which will host portions of the 2026 World Cup, recently showed off four new robot dogs that will help provide security during matches at BBVA Stadium...

FCC Bans Foreign-Made Drones and Key Parts Over U.S. National Security Risks

The U.S. Federal Communications Commission FCC on Monday announced a ban on all drones and critical components made in a foreign country, citing national security concerns. To that end, the agency has added to its Covered List Uncrewed aircraft systems UAS and UAS critical components produced in ...

Hyperparameter Tuning-Based Optimized Performance Analysis of Machine Learning Algorithms for Network Intrusion Detection

Network Intrusion Detection Systems NIDS are essential for securing networks by identifying and mitigating unauthorized activities indicative of cyberattacks. As cyber threats grow increasingly sophisticated, NIDS must evolve to detect both emerging threats and deviations from normal behavior. Th...

EUVD-2007-6394

Malware in sbrugna...

EUVD-2014-6549

Malware in sbrugna...

EUVD-2024-37803

Malicious code in bioql PyPI...

EUVD-2025-2999

Malicious code in bioql PyPI...

EUVD-2023-38802

Malicious code in bioql PyPI...

Malicious code in tailwind-cup-icon (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5b63b6f29071fd3e01046c19dd01c0f863e62d3c2fd92a1f51d040e5f06ec839 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47501 Malicious code in tailwind-cup-icon (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5b63b6f29071fd3e01046c19dd01c0f863e62d3c2fd92a1f51d040e5f06ec839 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in @zalastax/nolb-cup (npm)

The package @zalastax/nolb-cup was found to contain malicious code...

MAL-2025-9902 Malicious code in @zalastax/nolb-_cup (npm)

The package @zalastax/nolb-cup was found to contain malicious code...

MAL-2025-11057 Malicious code in @zalastax/nolb-cup (npm)

The package @zalastax/nolb-cup was found to contain malicious code...

Performance of Machine Learning Classifiers for Anomaly Detection in Cyber Security Applications

This work empirically evaluates machine learning models on two imbalanced public datasets KDDCUP99 and Credit Card Fraud 2013. The method includes data preparation, model training, and evaluation, using an 80/20 train/test split. Models tested include eXtreme Gradient Boosting XGB, Multi Layer...

CVE-2025-22794

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ianhaycox World Cup Predictor world-cup-predictor allows Reflected XSS.This issue affects World Cup Predictor: from n/a through = 1.9.9...

CVE-2025-22794

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ianhaycox World Cup Predictor world-cup-predictor allows Reflected XSS.This issue affects World Cup Predictor: from n/a through = 1.9.8...

CVE-2025-22794 WordPress World Cup Predictor Plugin <= 1.9.8 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ianhaycox World Cup Predictor world-cup-predictor allows Reflected XSS.This issue affects World Cup Predictor: from n/a through = 1.9.8...