Hackers Aggressively Exploiting WordPress Plugin XSS Flaw
The cybersecurity researchers at Akamai recently affirmed as web applications and third-party tools become more prevalent, the risk of cyber-attacks increases due to a larger…
Month: May 2023
Millions of Android Phones Comes Pre-Infected with Malware
Researchers from Trend Micro at Black Hat Asia claim that criminals have pre-infected millions of Android devices with malicious firmware before the devices ever leave…
Netgear Routers’ Flaws Expose Users to Malware, Remote Attacks, and Surveillance
May 12, 2023Ravie LakshmananNetwork Security / Malware As many as five security flaws have been disclosed in Netgear RAX30 routers that could be chained to…
IR35 compliance review: HMRC applauded over handling of 18-month investigation
HM Revenue & Customs (HMRC) is being applauded for its “pragmatic” approach to conducting an 18-month IR35 compliance check on a global manufacturing business that…
Assign severity ratings on Attack Surface Custom Policies
Assign severity to policy breaches AppSec teams often struggle to either validate or scale their security policies, like enforcing security headers or removing risky technologies.…
New Variant of Linux Backdoor BPFDoor Uncovered After Years of Staying Under the Radar
May 12, 2023Ravie LakshmananLinux / Malware A previously undocumented and mostly undetected variant of a Linux backdoor called BPFDoor has been spotted in the wild,…
Play Ransomware Group Leaks 5GB Data
The Play ransomware group has leaked 5GB of pilfered data allegedly from the City of Lowell cyber attack. The official website of the City of…
Upserve Resolves Over 85 Bugs in Two Years Thanks to Hackers
It’s been two years since Upserve launched its public bug bounty program on HackerOne. During that time, Upserve’s security team has resolved over 85 valid…
Solving Your Teams Secure Collaboration Challenges
In today’s interconnected world, where organisations regularly exchange sensitive information with customers, partners and employees, secure collaboration has become increasingly vital. However, collaboration can pose…
Post Office lawyer bragged how team ‘destroyed attack on the Horizon system’ and put woman in prison
An email has revealed that a senior Post Office lawyer bragged about how his team successfully prosecuted a subpostmaster for theft, sending her to prison…
Should we regulate the Internet of Things?
The Internet of Things is new, exciting, and unregulated. What could possibly go wrong? Security analyst Emma Lilliestam highlights the shortcomings of IoT security and…
WordPress Plugin Flaw Let Attackers Hijack 1m Websites
The widely-used Elementor plugin, “Essential Addons for Elementor,” has been discovered to have a security flaw that enables unauthorized users to gain administrative control, potentially…