Exploits for Social Warfare WordPress Plugin Reach Critical Mass

More and more attacks taking advantage of a XSS and RCE bug in the popular plugin have cropped up in the wild.

Link: https://threatpost.com/exploits-social-warfare-wordpress/144051/

HackerTor

FBI: BEC Scam Losses Almost Double To Reach $1.2 Billion

Overall, in 2018 the FBI received more than 351k reported scams with losses exceeding $2.7 billion.

Link: https://threatpost.com/fbi-bec-scam-losses-double/144038/

HackerTor

Microsoft’s Latest Patch Hoses Some Antivirus Software

McAfee, Sophos and Avast are among the antivirus software suites impacted.

Link: https://threatpost.com/microsofts-latest-patch-hoses-some-antivirus-software/143978/

HackerTor

Shopify Flaw Exposed Thousands of Merchants’ Revenue, Traffic Numbers

The flaw, which existed in a Shopify API endpoint, has been patched.

Link: https://threatpost.com/shopify-flaw-exposed-merchant-revenue-traffic/143902/

HackerTor

Poll: Facebook Harvests Email Contacts for 1.5M Users – Is Enough, Enough?

Take our short poll on how far Facebook can push its luck.

Link: https://threatpost.com/facebook-harvests-email-contacts/143915/

HackerTor

Easter Attack Affects Half a Billion Apple iOS Users via Chrome Bug

The U.S-focused eGobbler malvertising attacks are exploiting an unpatched Google Chrome bug.

Link: https://threatpost.com/easter-attack-apple-ios/143901/

HackerTor

ThreatList: Bad Bots Account for a Fifth of All Web Traffic, FinServ Hit the Worst

The financial services industry sees nearly half of all website traffic coming from malicious bots.

Link: https://threatpost.com/bad-bots-web-traffic-finserv/143859/

HackerTor

RatVermin Spyware Targets Ukraine Gov Agencies

Researchers are pinning a recent phishing campaign against Ukraine government agencies on the Luhansk People’s Republic, a proto-state in eastern Ukraine which declared independence in 2015.

Link: https://threatpost.com/ratvermin-spyware-targets-ukraine-gov-agencies/143827/

HackerTor

TicTocTrack Smartwatch Flaws Can Be Abused to Track Kids

A popular Australian smartwatch’s tracking capabilities expose its user’s locations, personal data and more.

Link: https://threatpost.com/tictoctrack-smartwatch-flaws-track-kids/143791/

HackerTor

Authentication Bypass Bug Hits Top Enterprise VPNs

Business users of Cisco, F5 Networks, Palo Alto Networks and Pulse Secure platforms are impacted, according the U.S. government.

Link: https://threatpost.com/authentication-bypass-bug-enterprise-vpns/143781/

HackerTor

Fresh hacking articles every day

Tag: Web Security

Exploits for Social Warfare WordPress Plugin Reach Critical Mass

FBI: BEC Scam Losses Almost Double To Reach $1.2 Billion

Microsoft’s Latest Patch Hoses Some Antivirus Software

Shopify Flaw Exposed Thousands of Merchants’ Revenue, Traffic Numbers

Poll: Facebook Harvests Email Contacts for 1.5M Users – Is Enough, Enough?

Easter Attack Affects Half a Billion Apple iOS Users via Chrome Bug

ThreatList: Bad Bots Account for a Fifth of All Web Traffic, FinServ Hit the Worst

RatVermin Spyware Targets Ukraine Gov Agencies

TicTocTrack Smartwatch Flaws Can Be Abused to Track Kids