ATENTIONβΌ New - CVE-2015-9419
π Read
via "National Vulnerability Database".
The captain-slider plugin 1.0.6 for WordPress has XSS via a Title or Caption section.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9418
π Read
via "National Vulnerability Database".
The Watu Pro plugin before 4.9.0.8 for WordPress has CSRF that allows an attacker to delete quizzes.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9417
π Read
via "National Vulnerability Database".
The testimonial-slider plugin through 1.2.1 for WordPress has CSRF with resultant XSS.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9416
π Read
via "National Vulnerability Database".
The sitepress-multilingual-cms (WPML) plugin 2.9.3 to 3.2.6 for WordPress has XSS via the Accept-Language HTTP header.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9415
π Read
via "National Vulnerability Database".
The bj-lazy-load plugin before 1.0 for WordPress has Remote File Inclusion.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9414
π Read
via "National Vulnerability Database".
The wp-symposium plugin through 15.8.1 for WordPress has XSS via the wp-content/plugins/wp-symposium/get_album_item.php?size parameter.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9413
π Read
via "National Vulnerability Database".
The eshop plugin through 6.3.13 for WordPress has CSRF with resultant XSS via the wp-admin/admin.php?page=eshop-downloads.php title parameter.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9412
π Read
via "National Vulnerability Database".
The Royal-Slider plugin before 3.2.7 for WordPress has XSS via the rstype parameter.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9411
π Read
via "National Vulnerability Database".
The Postmatic plugin before 1.4.6 for WordPress has XSS.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9411
π Read
via "National Vulnerability Database".
The Postmatic plugin before 1.4.6 for WordPress has XSS.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9410
π Read
via "National Vulnerability Database".
The Blubrry PowerPress Podcasting plugin 6.0.4 for WordPress has XSS via the tab parameter.π Read
via "National Vulnerability Database".
β Vimeo sued for storing faceprints of people without their say-so β
π Read
via "Naked Security".
The suit was filed under BIPA, the Illinois law that requires written consent to grab people's faceprints - the same law Facebook's battling.π Read
via "Naked Security".
Naked Security
Vimeo sued for storing faceprints of people without their say-so
The suit was filed under BIPA, the Illinois law that requires written consent to grab peopleβs faceprints β the same law Facebookβs battling.
β Update ColdFusion now! Emergency patch for critical flaws β
π Read
via "Naked Security".
Adobe has rushed out fixes for three vulnerabilities in its ColdFusion web development platform, two of which have been given the top billing of βcriticalβ.π Read
via "Naked Security".
Naked Security
Update ColdFusion now! Emergency patch for critical flaws
Adobe has rushed out fixes for three vulnerabilities in its ColdFusion web development platform, two of which have been given the top billing of βcriticalβ.
β Russian pleads guilty in massive JPMorgan hacking scheme β
π Read
via "Naked Security".
Andrei Tyurin is the first to be convicted in one of the largest thefts of customer data from a single US financial institution in history.π Read
via "Naked Security".
Naked Security
Russian pleads guilty in massive JPMorgan hacking scheme
Andrei Tyurin is the first to be convicted in one of the largest thefts of customer data from a single US financial institution in history.
β Hackers are infecting WordPress sites via a defunct plug-in β
π Read
via "Naked Security".
If you're a Wordpress admin using a plug-in called Rich Reviews, you'll want to uninstall it. Now. The now-defunct plug-in has a major vulnerability that allows malvertisers to infect sites running Wordpress and redirect visitors to other sites.π Read
via "Naked Security".
Naked Security
Hackers are infecting WordPress sites via a defunct plug-in
If youβre a Wordpress admin using a plug-in called Rich Reviews, youβll want to uninstall it. Now.
β Chrome Bug, Not Avid Software, Causes Damage to MacOS File Systems β
π Read
via "Threatpost".
Users scrambled to find a fix for the problem and eventually Google took responsibility for the issue.π Read
via "Threatpost".
Threat Post
Chrome Bug, Not Avid Software, Causes Damage to MacOS File Systems
Users scrambled to find a fix for the problem and eventually Google took responsibility for the issue.
β Cyber-Risk Business Cases: Using Economic Impact to Justify TIG Investment β
π Read
via "Threatpost".
How to determine -- and communicate -- the value of Threat Intelligence Gateways (TIGs) in your enterprise.π Read
via "Threatpost".
Threat Post
Cyber-Risk Business Cases: Using Economic Impact to Justify TIG Investment
How to determine β and communicate β the value of Threat Intelligence Gateways (TIGs) in your enterprise.
π Why businesses would rather lose revenue than data π
π Read
via "Security on TechRepublic".
While businesses don't want to lose data, 66% of business decision makers said their current IT resources do not keep up with growing technological demands.π Read
via "Security on TechRepublic".
TechRepublic
Why businesses would rather lose revenue than data
While businesses don't want to lose data, 66% of business decision makers said their current IT resources do not keep up with growing technological demands.
β S2 Ep10: Emotetβs back, mutant WannaCry and Insta scam β Naked Security Podcast β
π Read
via "Naked Security".
Here's the latest Naked Security podcast - listen now!π Read
via "Naked Security".
Naked Security
S2 Ep10: Emotetβs back, mutant WannaCry and Insta scam β Naked Security Podcast
Hereβs the latest Naked Security podcast β listen now!
β CISOs: Support Vendor Security Ops for Best Cloud Results β
π Read
via "Threatpost".
Despite CISOs' apprehension about increasing dependence on SaaS applications and the security risks the cloud represents, adoption isnβt slowing down.π Read
via "Threatpost".
Threat Post
CISOs: Support Vendor Security Ops for Best Cloud Results
CISOs' apprehension about increasing dependence on SaaS applications and the security risks the cloud represents isnβt slowing down cloud adoption.
π 75% of execs cite phishing as the most significant security threat to businesses π
π Read
via "Security on TechRepublic".
Training is the key to helping the enterprise avoid cyber threats from phishing or other means.π Read
via "Security on TechRepublic".
TechRepublic
75% of execs cite phishing as the most significant security threat to businesses
Training is the key to helping the enterprise avoid cyber threats from phishing or other means.