Researchers warn users of several plugins to update as vulnerabilities are being actively exploited to redirect website visitor traffic.
Link: https://threatpost.com/wordpress-plugins-exploited-in-ongoing-attack-researchers-warn/147671/
Tag: Web Security
Google Launches Open-Source Browser Extension for Ad Transparency
Google introduced a new initiative that it hopes will fight shady online advertising practices such as digital fingerprinting.
Link: https://threatpost.com/google-launches-open-source-browser-extension-for-ad-transparency/147634/
Cisco Patches Six Critical Bugs in UCS Gear and Switches
Six bugs found in Cisco’s Unified Computing System gear and its 220 Series Smart switches can allow unauthenticated remote hackers to take over equipment.
Link: https://threatpost.com/cisco-patches-six-critical-bugs/147585/
Backdoor Found in Utility for Linux, Unix Servers
Backdoor was intentionally planted in 2018 and found during the DEF CON 2019 security conference when researchers stumbled upon malicious code.
Link: https://threatpost.com/backdoor-found-in-utility-for-linux/147581/
Adult Content Site Exposed Personal Data of 1M Users
The personal email addresses – some indicating user names or government official status – of more than a million pornography website users were exposed.
Link: https://threatpost.com/adult-content-site-exposed-personal-data-of-1m-users/147572/
Microsoft Offers $30K Rewards For Chromium Edge Beta Flaws
Microsoft released the beta of its new Chromium-based Edge – and it is offering rewards of up to $30,000 for researchers to hunt out vulnerabilities in the browser.
Link: https://threatpost.com/microsoft-rewards-chromium-edge-beta-flaws/147542/
Fortnite Ransomware Masquerades as an Aimbot Game Hack
Attackers are taking aim at Fortnite’s global community of 250 million gamers.
Link: https://threatpost.com/fortnite-ransomware-masquerades-as-an-aimbot-game-hack/147549/
Adwind Spyware-as-a-Service Attacks Utility Grid Operators
A phishing campaign targeting utility grid operators uses a PDF attachment to deliver spyware.
Link: https://threatpost.com/adwind-spyware-as-a-service-attacks-utility-grid-operators/147525/
Fake News and Influence: Information Warfare in the Digital Age
It’s been around forever, but in a modern digital era marked by influence campaigns and deep fakes, information warfare has become much easier to carry out.
Link: https://threatpost.com/information-warfare-power-misinformation/147452/
Breached Passwords Still in Use By Hundreds of Thousands
More than 300,000 users still utilize credentials that have been compromised – with people visiting video streaming and porn sites most at fault, Google found in a new study.
Link: https://threatpost.com/breached-passwords-still-in-use-by-hundreds-of-thousands/147434/