WordPress Sites Targeted by Malware via Fake Plugins
Dubbed “ClickFix”, this campaign uses fake plugins with malicious scripts imbedded in them.
Read MoreWordpress
Yoast XSS Flaw
Popular SEO plugin Yoast needs to be updated to keep WordPress websites secure.
Read MoreSEC Data Breach and WP Plugin Patch
The FBI has published a new policy for publicly traded companies regarding security breaches. Get the details and access to the complete policy here.
Read MoreWP Plugin Patch & Akira Defeated
An important WordPress plugin update, and Avast defeats Akira ransomware encryption.
Read MoreWP Plugin Patch and PhaaS
A certain WordPress plugin is patched against a security flaw, and “phishing-as-a-service” is a real thing, especially against Microsoft 365 accounts.
Read MoreLastPass Data Breach Update and LearnPress Plugin Patched
More details about the LastPass breach and LearnPress plugin users need to apply the latest update to address multiple security flaws.
Read MoreMicrosoft Defender Rollback, and WordPress Plugins With Vulnerabilities
Disappearing shortcuts are the result of an over-zealous Defender, and there are a few WordPress plugins that should be updated. Read more for the latest on these issues.
Read MoreThe Most Commonly Used Passwords, New Google Tool: GUAC, Important Patches
Recent Rapid7 study shows that there are still a significant number of users with risky password habits. Google releases a tool to track software security metadata. Wordpress and Oracle have updates and patches available that should be applied as soon as possible.
Read MoreWordPress Privilege Escalation Exploit, Contec Devices Patched, and New Facebook Phishing Scam
An exploit in the WPGateway plugin on WordPress allows creation of administrative accounts. Common airplane network devices were found with a vulnerability. A phishing scam comes to light on Facebook.
Read MoreCisco Devices Reach End of Life, and WordPress Plugin Creates Vulnerability
These Cisco devices have reached their end of life and thus their end of support. BackupBuddy, a WordPress plugin has been patched against a vulnerability.
Read More