WordPress has issued a security release, patching a SOME vulnerability in Plupload, and a reflected cross-site scripting bug in MediaElement.js.
Tag Archives: Web Security
Yahoo Releases Second Wave of Unsealed FISC Documents
Yahoo releases a second wave of unsealed documents tied to its battle with the secret Foreign Intelligence Surveillance Court.
GoDaddy Addresses Blind XSS Vulnerability Affecting Online Support
Domain registrar GoDaddy fixed a vulnerability affecting systems used by its customer support agents that could have been abused to take over, modify or delete accounts.
Bucbi Ransomware Gets a Big Makeover
Two-year-old Bucbi ransomware is making a comeback with new capabilities added, transforming the simple malware into Swiss Army Knife for cyber crime.
Old Exploits Die Hard, Says Microsoft Report
Microsoft’s twice-annual SIR bellwether security report highlights malware, fraudulent login attempts and the staying power of really old software bugs.
PwnedList Shutdown Unrelated to Recent Vulnerability
PwnedList’s decision to shut down its free credential monitoring service had nothing to do with a recent vulnerability that exposed its collection of 866 compromised credentials.
Diary of a Ransomware Victim
A major online casino ran headfirst into a ransomware infection and learned about how simple mistakes can lead to complicated problems.
Identity Thieves Used Leaked PII to Steal ADP Payroll Info
Cybercriminals accessed a W-2 portal maintained by payroll company ADP recently to glean sensitive information about employees at a handful of companies.
Public Exploits Available for ImageMagick Vulnerabilities
Public exploits are available for critical ImageMagick vulnerabilities, increasing the risk to websites that use the open source image-processing software.
10-Year-Old Instagram Bug Hunter Earns $10,000
Facebook says a 10-year-old is the youngest ever to earn a bug bounty for reporting Instagram API bug.