wordpress
WordPress Plugin Exploited to Turn Legitimate Sites Into Phishing Traps
A WordPress plugin known as PhishWP, has been discovered on Russian cybercrime forums and is being exploited by cybercriminals to steal sensitive data from unsuspecting users. ...
Security Boulevard
Hacker Uses Info-Stealer Against Security Pros, Other Bad Actors
An unknown hacker called MUT-1244 used information-stealing malware to not only grab sensitive data from cybersecurity professionals but also to steal WordPress credentials from other bad actors who had bought them on ...
Security Boulevard
The U.S. Bans Kaspersky Antivirus, WordPress Plugin Supply Chain Attacks
Tom Eston | | anti-virus, antivirus, backdoor, ban, Banned, Biden, Biden administration, Cyber Security, Cybersecurity, Data Privacy, Digital Privacy, Episodes, Information Security, Infosec, kaspersky, Kaspersky Antivirus, Malware, Podcast, Podcasts, Privacy, Russia, security, supply chain, supply chain attack, technology, US, Weekly Edition, wordpress, WordPress Plugins
In episode 336 of the Shared Security Podcast, we discuss the Biden administration’s recent ban on Kaspersky antivirus software in the U.S. due to security concerns linked to its Russian origins. We ...
WordPress Plugin Supply Chain Attack Gets Worse
Richi Jennings | | hacked WordPress, hacking wordpress, plug-in, plug-in vulnerability, plug-ins, rogue plug-in, SB Blogwatch, software supply chain, software supply chain attack, software supply chain attacks, software supply chain risk, Software Supply Chain risks, Supply-Chain Insecurity, Themes and Plug-ins, wordpress, WordPress plug-in, wordpress plugin update, Wordpress Plugin Vulnerability, WordPress Plugin Vulnerability Exploitation, WordPress Plugins, WordPress Plugins and Themes
30,000 websites at risk: Check yours ASAP! (800 Million Ostriches Can’t Be Wrong.) ...
Security Boulevard
Imperva Customers are Protected Against New SQL Injection Vulnerability in WordPress Plugin
A critical security flaw, identified as CVE-2024-1071, was discovered in the Ultimate Member plugin for WordPress, affecting over 200,000 active installations. This vulnerability has a high severity CVSS score of 9.8 and ...
Imperva successfully defends against CVE-2024-25600 in WordPress Bricks Builder
Gabi Stapel | | Bricks Builder, CVE-2024-25600, imperva, Imperva Threat Research, vulnerability, wordpress
A critical vulnerability in the Bricks Builder site builder for WordPress, identified as CVE-2024-25600, is currently under active exploitation, and poses a significant threat to over 25,000 sites. This flaw, with a ...
Code Execution Update: Improve WordPress Security
Wajahat Raja | | code execution, Cyber Threats, Cybersecurity, Cybersecurity News, digital security, exploitation, PHP Object Injection, Remote Code Execution, Security Advisory, security patch, threat actors, vulnerability, Website Security, wordpress, WordPress 6.4.2, WordPress Security Best Practices, WordPress update
In the ever-evolving landscape of digital security, WordPress has recently released a critical code execution update, version 6.4.2, addressing a potential threat that could jeopardize the integrity of vulnerable sites. This update, ...
Phishing Scammers Use WordPress, Abandoned Sites to Host Malicious Pages
Hackers are using abandoned websites, smaller ones with little traffic and few security features, and those built atop the WordPress platform to house the malicious pages that are part of their phishing ...
Security Boulevard
Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of September 5, 2022
All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us ...
Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of August 29, 2022
All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us ...