Two Gravity Forms WordPress plugin versions available on the official download page were injected with malware in a supply ...

Patchstack published an advisory on a supply chain attack affecting Gravity Forms that enables remote code execution on ...

Researchers have known for almost a decade that threat actors sometimes use DNS records to host malicious PowerShell scripts.

Gravity Forms is a premium WordPress plugin enabling users to build different forms using a drag-and-drop interface. It ...

The developer of Gravity Forms for the WordPress content management system (CMS) has issued an alert about a malware ...

The popular WordPress plugin Gravity Forms has been compromised in what seems a supply-chain attack where manual installers ...

An open-source malware can now spawn into DCRat, Venom RAT, and JasonRAT, powering phishing, data theft, and MaaS campaigns worldwide.

Sonatype, a software supply chain security company, this week released the Q2 2025 edition of its Open Source Malware Index, ...

On the malware side, cryptomining malware dropped slightly, making up just 5% of packages in the second quarter. The decline ...

An analysis of cyberattacks shared this week by Watchguard Technologies finds there was a 171% increase in total unique ...

It's worth noting that IconAds is a variant of a threat that's also tracked by other cybersecurity vendors under the names ...

Today’s report from Jamf highlights which types of malware are wreaking the most havoc. For the first time, infostealers have overtaken adware as the dominant form of malware caught by Jamf users.