WordPress plug-in Archives

A flock of ostriches (or is it a troop?)

WordPress Plugin Supply Chain Attack Gets Worse

30,000 websites at risk: Check yours ASAP! (800 Million Ostriches Can’t Be Wrong.) ...

Security Boulevard

education, cybersecurity, certifications cybersecurity Microsoft IBM SANS online cybersecurity education Educational

Galaxy S9, iPhone X, Xiaomi Mi6 Devices Hacked at Pwn2Own Contest

Lucian Constantin | November 16, 2018 | AMP for WP, iphone x, mobile exploit, NFC hack, PWN2OWN, Samsung Galaxy S9, WordPress plug-in, Xiaomi Mi6

Two teams of hackers managed to break into the iPhone X, Samsung Galaxy S9 and Xiaomi Mi6 mobile devices at the mobile Pwn2Own contest held in Tokyo this week by using multiple ...

Security Boulevard

Hackers Exploit Critical Flaw in WordPress GDPR Compliance Plug-in

Lucian Constantin | November 13, 2018 | Privilege Escalation, VM escape, VMware, WordPress exploit, WordPress plug-in,

Hackers are breaking into WordPress websites by exploiting a recently patched privilege escalation vulnerability in a popular plug-in that allows site owners to conform to the GDPR user data collection requirements. The ...

Security Boulevard

Backdoors Found in Three More WordPress Plug-ins

Lucian Constantin | December 28, 2017 | Advertising, backdoor, password manager, SEO spam, software supply chain attack, user tracking, WordPress plug-in

In what is becoming an increasingly common type of software supply chain attack, three more WordPress plug-ins that recently changed ownership got backdoored by their new owners. What’s worse is that the malicious code ...

Security Boulevard

Oracle Patches Critical Vulnerabilities in PeopleSoft Applications

Oracle has released out-of-band security patches for a component used by multiple ERP applications from its PeopleSoft suite. The updates fix five vulnerabilities, including two critical ones that can be exploited to ...

Critical Dnsmasq Flaws Put Networking Devices, Linux Systems at Risk

Lucian Constantin | October 3, 2017 | Axiom, CCleaner, cyberespionage, Data breach, dnsmasq, Equifax, Linux, Malware, Remote Code Execution, router security, vulnerability, WordPress plug-in, zero-day

If you have Linux systems in your environment—desktops, servers, routers and other networking devices—you should install the latest patches for the dnsmasq package as soon as they become available. Security researchers from Google ...

WordPress plug-in

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On