Get Started for FREE
Sign up with Facebook Sign up with X
I don't have a Facebook or a X account
 Your new post is loading...
Your new post is loading...
Scoop.it!
Millions of websites running WordPress are being strongly urged to update to the latest version of the popular content management system as soon as possible, after a serious security vulnerability was uncovered. 
No comment yet.
Sign up to comment
Scoop.it!
Von wegen Sicherheit: Unter dem Deckmantel eines legitimen WordPress-Plugin richtet X-WP-SPAM-SHIELD-PRO eine Backdoor auf Webseiten ein.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing/?&tag=Cybersecurity
Gust MEES's insight:
Von wegen Sicherheit: Unter dem Deckmantel eines legitimen WordPress-Plugin richtet X-WP-SPAM-SHIELD-PRO eine Backdoor auf Webseiten ein.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing/?&tag=Cybersecurity
Scoop.it!
NextGEN Gallery is an extraordinarily popular plugin for self-hosted WordPress websites, having been downloaded over 16.5 million times.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing/?&tag=Cybersecurity
Gust MEES's insight:
NextGEN Gallery is an extraordinarily popular plugin for self-hosted WordPress websites, having been downloaded over 16.5 million times.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing/?&tag=Cybersecurity
Scoop.it!
Keep your WordPress site updated, or risk having hackers modify the content of any post or webpage.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing
Gust MEES's insight:
Keep your WordPress site updated, or risk having hackers modify the content of any post or webpage.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing
Scoop.it!
With the huge number of sites running WordPress, and the frequency with which attackers exploit vulnerabilities on the platform to launch malicious attacks, it makes sense for self-hosting bloggers to update their systems as soon as possible.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing/?tag=Cybersecurity
Gust MEES's insight:
With the huge number of sites running WordPress, and the frequency with which attackers exploit vulnerabilities on the platform to launch malicious attacks, it makes sense for self-hosting bloggers to update their systems as soon as possible.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing/?tag=Cybersecurity
Scoop.it!
The latest version of the software, a security update, is WordPress 4.2.3.
Gust MEES's insight:
The latest version of the software, a security update, is WordPress 4.2.3.
Scoop.it!
The FBI has issued a warning that ISIS-supporting hackers are exploiting vulnerabilities on websites running WordPress.
Gust MEES's insight:
The FBI has issued a warning that ISIS-supporting hackers are exploiting vulnerabilities on websites running WordPress.
Scoop.it!
Multiple vulnerabilities in the WPML plugin that could allow attackers to access databases, delete site content, and gain administrative privileges have put as many as 400,000 websites at risk.
Gust MEES's insight:
Multiple vulnerabilities in the WPML plugin that could allow attackers to access databases, delete site content, and gain administrative privileges have put as many as 400,000 websites at risk.
Scoop.it!
A critical security flaw in a plugin called WP-Slimstat is to blame. Over one million websites running the WordPress content management system are potentially at risk of being hijacked due to a critical vulnerability exposed in the WP-Slimstat plugin. On Tuesday, a security advisory posted by researcher Marc-Alexandre Montpas from security firm Sucuri said the "very high risk" vulnerability found in versions of WP-Slimstat 3.9.5 and lower could lead to cyberattackers being able to break the plugin's "secret" key, perform an SQL injection and take over a target website. Learn more: - http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing
Gust MEES's insight:
A critical security flaw in a plugin called WP-Slimstat is to blame. Over one million websites running the WordPress content management system are potentially at risk of being hijacked due to a critical vulnerability exposed in the WP-Slimstat plugin. On Tuesday, a security advisory posted by researcher Marc-Alexandre Montpas from security firm Sucuri said the "very high risk" vulnerability found in versions of WP-Slimstat 3.9.5 and lower could lead to cyberattackers being able to break the plugin's "secret" key, perform an SQL injection and take over a target website. Learn more: - http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing
Scoop.it!
If your website runs on a self-hosted WordPress installation or on Drupal, update your software now.
Gust MEES's insight:
If your website runs on a self-hosted WordPress installation or on Drupal, update your software now.
Scoop.it!
Do you use the popular All in One SEO Pack plugin on your WordPress website? ===> If so, you need to update the plugin as soon as possible to the latest version!!! <===
Gust MEES's insight:
Do you use the popular All in One SEO Pack plugin on your WordPress website? ===> If so, you need to update the plugin as soon as possible to the latest version!!! <===
Scoop.it!
Web site security monitoring and malware removal Is my WordPress Site DDOS'ing others? Lately we are seeing many legitimate and clean WordPress sites being misused on DDOS attacks. We explain in more detail in our blog how it can happen. . Example of site being misused: here. If you have any questions, please contact us at labs@sucuri.net or hit us on Twitter - @Sucuri_Security. . ===> Check out if YOUR WordPress site is secure! <===
Gust MEES's insight:
===> Check out if YOUR WordPress site is secure! <===
Gust MEES's curator insight,
March 13, 2014 5:15 PM
===> Check out if YOUR WordPress site is secure! <===
Scoop.it!
Ce bulletin a été rédigé par Vigil@nce : http://vigilance.fr/offre SYNTHÈSE DE LA VULNÉRABILITÉ Un attaquant peut employer plusieurs vulnérabilités de (...) Gravité : 2/4 Date création : 24/01/2014 DESCRIPTION DE LA VULNÉRABILITÉ Plusieurs vulnérabilités ont été annoncées dans WordPress WP-E-Commerce. Un attaquant peut uploader un fichier illicite via save-data.functions.php, afin par exemple de déposer un Cheval de Troie. [grav:2/4] Un attaquant peut utiliser ajax.php, afin d’exécuter du code. [grav:2/4] Un attaquant peut utiliser display-sales-logs.php, afin d’exécuter du code. [grav:2/4] Un attaquant peut utiliser misc.functions.php, afin d’obtenir des informations sensibles. [grav:2/4] Un attaquant peut provoquer un Cross Site Scripting dans swfupload.swf, afin d’exécuter du code JavaScript dans le contexte du site web. [grav:2/4]
Gust MEES's insight:
|
Scoop.it!
Outdated versions of three popular WordPress plugins suffer from a "critical" zero-day vulnerability that enables an attacker to take over a website.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing/?&tag=Cybersecurity
Gust MEES's insight:
Outdated versions of three popular WordPress plugins suffer from a "critical" zero-day vulnerability that enables an attacker to take over a website.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing/?&tag=Cybersecurity
Scoop.it!
WordPress 4.8.2 is out, featuring nine security fixes website owners will want to apply, well, now.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing
Gust MEES's insight:
WordPress 4.8.2 is out, featuring nine security fixes website owners will want to apply, well, now.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing
Scoop.it!
Domains are being compromised through a vulnerability in the WordPress REST API.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing/?&tag=Cybersecurity
Gust MEES's insight:
Domains are being compromised through a vulnerability in the WordPress REST API.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing/?&tag=Cybersecurity
Scoop.it!
#Update asap!!! WordPress corrige des vulnérabilités très critiques | #Updates #CyberSecurity #Blogs
Attention menaces. WordPress a patché trois vulnérabilités, dont une faille de type XSS (cross-site scripting) et un problème d’injection SQL pouvant déboucher sur la création de vulnérabilités supplémentaires.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing
Gust MEES's insight:
Attention menaces. WordPress a patché trois vulnérabilités, dont une faille de type XSS (cross-site scripting) et un problème d’injection SQL pouvant déboucher sur la création de vulnérabilités supplémentaires.
Learn more / En savoir plus / Mehr erfahren:
http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing
Scoop.it!
Über eine Cross-Site-Scripting-Schwachstelle können Angreifer WordPress-Installationen kompromittieren. Betroffen sind alle Versionen bis einschließlich WordPress 4.4.
Gust MEES's insight:
Über eine Cross-Site-Scripting-Schwachstelle können Angreifer WordPress-Installationen kompromittieren. Betroffen sind alle Versionen bis einschließlich WordPress 4.4.
Scoop.it!
Vulnerable websites can be exploited via XSS to steal user accounts, change settings or phish passwords from unsuspecting users. In fact, XSS flaws are one of the most commonly encountered security flaws found on websites. Patching is obviously sensible and should be undertaken at the earliest opportunity, but never forget that additional layers of protection can go beyond patches – and perhaps be proactive in defending your systems from abuse during the time when no official fixes are available.
Gust MEES's insight:
Vulnerable websites can be exploited via XSS to steal user accounts, change settings or phish passwords from unsuspecting users. In fact, XSS flaws are one of the most commonly encountered security flaws found on websites. Patching is obviously sensible and should be undertaken at the earliest opportunity, but never forget that additional layers of protection can go beyond patches – and perhaps be proactive in defending your systems from abuse during the time when no official fixes are available.
Scoop.it!
Another popular Yoast Wordpress plugin has been found sporting a critical vulnerability that can be exploited by attackers to take over control of the site. Learn more: - http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing
Gust MEES's insight:
Another popular Yoast Wordpress plugin has been found sporting a critical vulnerability that can be exploited by attackers to take over control of the site. Learn more: - http://www.scoop.it/t/wordpress-annotum-for-education-science-journal-publishing
Scoop.it!
A serious vulnerability was found in one of the most popular WordPress plugins, and guess what? It got fixed really quickly. :) All that remains is for you to apply the update on your web server.
Gust MEES's insight:
A serious vulnerability was found in one of the most popular WordPress plugins, and guess what? It got fixed really quickly. :) All that remains is for you to apply the update on your web server.
Scoop.it!
Thousands of websites are at risk of being exploited by a previously undisclosed vulnerability in a WordPress plugin, which researchers say could be used to inject malicious code into websites.
Gust MEES's insight:
Thousands of websites are at risk of being exploited by a previously undisclosed vulnerability in a WordPress plugin, which researchers say could be used to inject malicious code into websites.
Scoop.it!
A glut of Wordpress sites have fallen victim to both malware infections and a series of brute force attacks that have making the rounds over the past several
Gust MEES's insight:
A glut of Wordpress sites have fallen victim to both malware infections and a series of brute force attacks that have making the rounds over the past several
Gust MEES's curator insight,
July 24, 2014 9:25 AM
A glut of Wordpress sites have fallen victim to both malware infections and a series of brute force attacks that have making the rounds over the past several...
Scoop.it!
WordPress.com has taken steps to deal with the Heartbleed vulnerability. Here's what you need to know. Learn more:
Gust MEES's insight:
WordPress.com has taken steps to deal with the Heartbleed vulnerability. Here's what you need to know. Learn more:
Scoop.it!
Legitimate sites forced to aid criminals' illicit botnet operations Hackers have hijacked more than 162,000 legitimate WordPress sites, connecting them to a criminal botnet and forcing them to mount distributed denial-of-service (DDoS) attacks, according to security firm Sucuri. Sucuri CTO Daniel Cid said the company uncovered the botnet when analysing an attack targeting one of its customers. Cid said Sucuri managed to trace the source of the attack to legitimate WordPress sites. "The most interesting part is that all the requests were coming from valid and legitimate WordPress sites. Yes, other WordPress sites were sending random requests at a very large scale and bringing the site down," read the blog.
Gust MEES's curator insight,
March 11, 2014 10:42 AM
Gust MEES's curator insight,
March 11, 2014 10:48 AM
|
