π Cybercriminals using gifs to corrupt Drupal sites π
π Read
via "Security on TechRepublic".
Hackers are taking advantage of vulnerabilities in the Drupal CMS platform by using malicious code disguised as gifs.π Read
via "Security on TechRepublic".
TechRepublic
Cybercriminals using gifs to corrupt Drupal sites
Hackers are taking advantage of vulnerabilities in the Drupal CMS platform by using malicious code disguised as gifs.
β Vulnerable Twitter API Leaves Tens of Thousands of iOS Apps Open to Attacks β
π Read
via "Threatpost".
Millions of iOS users could be vulnerable to man-in-the-middle attacks that trace back to flawed Twitter code used in popular iPhone apps.π Read
via "Threatpost".
Threat Post
Vulnerable Twitter API Leaves Tens of Thousands of iOS Apps Open to Attacks
Millions of iOS users could be vulnerable to man-in-the-middle attacks that trace back to flawed Twitter code used in popular iPhone apps.
β California Bans Deepfakes in Elections, Porn β
π Read
via "Threatpost".
A pair of laws provides recourse for victims of deepfake technology.π Read
via "Threatpost".
Threat Post
California Bans Deepfakes in Elections, Porn
A pair of laws provides recourse for victims of deepfake technology.
π΄ Drupalgeddon2 Vulnerability Still Endangering CMSes π΄
π Read
via "Dark Reading: ".
A new wave of attacks has been discovered on Drupal-based content management systems that weren't patched for the older flaw.π Read
via "Dark Reading: ".
Darkreading
Drupalgeddon2 Vulnerability Still Endangering CMSes
A new wave of attacks has been discovered on Drupal-based content management systems that weren't patched for the older flaw.
π΄ Lack of Role Models, Burnout & Pay Disparity Hold Women Back π΄
π Read
via "Dark Reading: ".
New ISACA data emphasizes a gap between men and women who share their opinions on underrepresentation of women and equal pay in the tech industry.π Read
via "Dark Reading: ".
Dark Reading
Lack of Role Models, Burnout & Pay Disparity Hold Women Back
New ISACA data emphasizes a gap between men and women who share their opinions on underrepresentation of women and equal pay in the tech industry.
β Facebookβs Libra cryptocurrency dealt blow by PayPalβs departure β
π Read
via "Naked Security".
PayPal abruptly announced that it was leaving the Libra Association.π Read
via "Naked Security".
Naked Security
Facebookβs Libra cryptocurrency dealt blow by PayPalβs departure
PayPal abruptly announced that it was leaving the Libra Association.
β Nationwide facial recognition ID program underway in France β
π Read
via "Naked Security".
It's coming next month, in spite of a lawsuit and the data regulator's protests about lack of consent, data security and privacy.π Read
via "Naked Security".
Naked Security
Nationwide facial recognition ID program underway in France
Itβs coming next month, in spite of a lawsuit and the data regulatorβs protests about lack of consent, data security and privacy.
β GPS tracker from stalked womanβs car led to indictment of 20 mobsters β
π Read
via "Naked Security".
Girlfriend found it, girlfriend popped it onto a city bus, gadget got found, multiyear investigation got launched, 20 got indicted.π Read
via "Naked Security".
Naked Security
GPS tracker from stalked womanβs car led to indictment of 20 mobsters
Girlfriend found it, girlfriend popped it onto a city bus, gadget got found, multiyear investigation got launched, 20 got indicted.
β Signal immediately fixed FaceTime-style eavesdropping bug β
π Read
via "Naked Security".
Remember the FaceTime bug that allowed a caller to eavesdrop on your phone? Researchers just discovered another - this time in Signal.π Read
via "Naked Security".
Naked Security
Signal immediately fixed FaceTime-style eavesdropping bug
Remember the FaceTime bug that allowed a caller to eavesdrop on your phone? Researchers just discovered another β this time in Signal.
π΄ Iranian Cyberattack on US Presidential Campaign Could Be a Sign of Things to Come π΄
π Read
via "Dark Reading: ".
Political parties and election systems will be heavily targeted in the months leading up to the 2020 general elections, some security experts say.π Read
via "Dark Reading: ".
Darkreading
Iranian Cyberattack on US Presidential Campaign Could Be a Sign of Things to Come
Political parties and election systems will be heavily targeted in the months leading up to the 2020 general elections, some security experts say.
β APT Groups Exploiting Flaws in Unpatched VPNs, Officials Warn β
π Read
via "Threatpost".
U.S. and U.K. agencies warn consumers to update technologies from Fortinet, Pulse Secure and Palo Alto Networks to mitigate attacks that are likely coming from Chinaπ Read
via "Threatpost".
Threat Post
APT Groups Exploiting Flaws in Unpatched VPNs, Officials Warn
U.S. and U.K. agencies warn consumers to update technologies from Fortinet, Pulse Secure and Palo Alto Networks to mitigate attacks that are likely coming from China
ATENTIONβΌ New - CVE-2015-9456
π Read
via "National Vulnerability Database".
The orbisius-child-theme-creator plugin before 1.2.8 for WordPress has incorrect access control for file modification via the wp-admin/admin-ajax.php?action=orbisius_ctc_theme_editor_ajax&sub_cmd=save_file theme_1, theme_1_file, or theme_1_file_contents parameter.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9455
π Read
via "National Vulnerability Database".
The buddypress-activity-plus plugin before 1.6.2 for WordPress has CSRF with resultant directory traversal via the wp-admin/admin-ajax.php bpfb_photos[] parameter in a bpfb_remove_temp_images action.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9454
π Read
via "National Vulnerability Database".
The smooth-slider plugin before 2.7 for WordPress has SQL Injection via the wp-admin/admin.php?page=smooth-slider-admin current_slider_id parameter.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9453
π Read
via "National Vulnerability Database".
The broken-link-manager plugin before 0.6.0 for WordPress has XSS via the HTTP Referer or User-Agent header to a URL that does not exist.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9452
π Read
via "National Vulnerability Database".
The nex-forms-express-wp-form-builder plugin before 4.6.1 for WordPress has SQL injection via the wp-admin/admin.php?page=nex-forms-main nex_forms_Id parameter.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9451
π Read
via "National Vulnerability Database".
The plugmatter-optin-feature-box-lite plugin before 2.0.14 for WordPress has SQL injection via the wp-admin/admin-ajax.php?action=pmfb_mailchimp pmfb_tid parameter.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9450
π Read
via "National Vulnerability Database".
The plugmatter-optin-feature-box-lite plugin before 2.0.14 for WordPress has SQL injection via the wp-admin/admin-ajax.php?action=pmfb_cc pmfb_tid parameter.π Read
via "National Vulnerability Database".
π΄ Beyond the Horde: The Uptick in Targeted Attacks (And How to Fight Back) π΄
π Read
via "Dark Reading: ".
We're seeing a dramatic rise in targeted attacks, but following these guidelines can help your enterprise stay safe.π Read
via "Dark Reading: ".
Darkreading
Beyond the Horde: The Uptick in Targeted Attacks (And How to Fight Back)
We're seeing a dramatic rise in targeted attacks, but following these guidelines can help your enterprise stay safe.
π How to build curl with SFTP support π
π Read
via "Security on TechRepublic".
The curl package can be build to include SFTP support. Find out how easy this is to do.π Read
via "Security on TechRepublic".
TechRepublic
How to build curl with SFTP support
The curl package can be build to include SFTP support. Find out how easy this is to do.