vulnerability – Page 41 – PossibleThreat Articles

WordPress 5.2.3 fixes new clutch of security vulnerabilities

September 9, 2019 0 Comments Patching, plugins, security threats, vulnerability, Wordpress, WordPress plugin, XSS

Credit to Author: John E Dunn| Date: Mon, 09 Sep 2019 10:31:30 +0000

WordPress version 5.2.3 has just appeared on the download pipe featuring half a dozen security fixes and software enhancements.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/j-xSSrxRMDU” height=”1″ width=”1″ alt=””/>

Security Sophos

Patch early, patch often – and patch everything!

September 9, 2019 0 Comments Cybercrime, exploits, Naked Security Live, Patching, Video, vulnerability, Wordpress

Credit to Author: Paul Ducklin| Date: Mon, 09 Sep 2019 09:35:39 +0000

Here’s our latest Naked Security Live video – all about WordPress, plugins and patching.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/58GAekVA2sQ” height=”1″ width=”1″ alt=””/>

Security Sophos

Android gets September update as price of flaws soars

September 5, 2019 0 Comments Android, Android 10, bug bounties, Google, iOS, Mobile, Operating Systems, Organisations, Patching, Project Mainline, security threats, Technologies, vulnerability, Windows

Credit to Author: John E Dunn| Date: Thu, 05 Sep 2019 13:51:21 +0000

When is a security update not a security update? When it’s patching flaws in a version of an OS nobody beyond developers is yet running.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/xUkOcZUm9To” height=”1″ width=”1″ alt=””/>

Security Sophos

iPhone attack may have targeted Android and Windows too

September 3, 2019 0 Comments Android, Apple, bug bounty, Google, Government security, government spyware, iOS, iPhone, Mobile, nation state hacking, Operating Systems, security threats, vulnerability, Windows, zero day

Credit to Author: John E Dunn| Date: Tue, 03 Sep 2019 14:47:23 +0000

A sophisticated and sustained watering hole attack affecting iPhones may have targeted Windows and Android too.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/3wCw5XE352c” height=”1″ width=”1″ alt=””/>

Security Sophos

XKCD forums breached

September 3, 2019 0 Comments bcrypt, breach, correcthorsebatterystaple, Cryptography, data breach, data leak, data loss, hashing, MD5, phpBB, salting, security threats, vulnerability, xkcd

Credit to Author: Lisa Vaas| Date: Tue, 03 Sep 2019 10:17:58 +0000

How did the Correct Horse Battery get Stapled?<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/YDE5xjmhFxY” height=”1″ width=”1″ alt=””/>

Security Sophos

WordPress sites are being backdoored with rogue admin users

September 2, 2019 0 Comments malvertising, plugin, rogue admin, vulnerability, wordfence, Wordpress

Credit to Author: John E Dunn| Date: Mon, 02 Sep 2019 14:58:07 +0000

A malvertising campaign has evolved to give hackers control of entire sites.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/O3jHDYTQtss” height=”1″ width=”1″ alt=””/>

Security Sophos

Google throws bug bounty bucks at mega-popular third-party apps

September 2, 2019 0 Comments Android, bug bounties, chrome, data loss, DDPRP, Developer Data Protection Reward Program, extensions, Google, Google Chrome, Google Play, Google Play Security Reward Program, hackerone, Mobile, oauth, security threats, third party apps, vulnerability

Credit to Author: Lisa Vaas| Date: Mon, 02 Sep 2019 10:51:32 +0000

Google’s going to throw more bug bounty money at the problem of nasty apps in its Play Store, it announced on Thursday. In a post from the Android Security & Privacy team’s Adam Bacchus, Sebastian Porst, and Patrick Mutchler , the company said that it’s throwing the security net over not just its own apps, but […]<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/bPMJRaBtj94″ height=”1″ width=”1″ alt=””/>

Security Sophos

Capital One cryptojacking suspect indicted

September 2, 2019 0 Comments capital one, CFAA, Cloud Computing, cryptojacking, data breach, data loss, erratic, federal grand jury, Hacker, Hacking, indictment, Law & order, misconfigured servers, Paige Thompson, software engineer, vulnerability, wire fraud

Credit to Author: Lisa Vaas| Date: Mon, 02 Sep 2019 10:39:21 +0000

The former software engineer allegedly created scanners to look for misconfigured servers rented from a cloud computing company.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/au_7MSrus80″ height=”1″ width=”1″ alt=””/>

Security Sophos

Sophisticated iPhone hacking went unnoticed for over two years

August 30, 2019 0 Comments Apple, Google, Google Project Zero, iOS, iPhone, security threats, vulnerability

Credit to Author: John E Dunn| Date: Fri, 30 Aug 2019 14:54:08 +0000

Compromised iPhones were turned into surveillance tools capable of recording the owner’s entire digital life.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/JJ6DBKwnpaM” height=”1″ width=”1″ alt=””/>

Security Sophos

Google warns of system-controlling Chrome bug

August 30, 2019 0 Comments blink, browser bug, chrome, Chrome browser, Google, Google Chrome, Organisations, security threats, vulnerability, Web Browsers

Credit to Author: Danny Bradbury| Date: Fri, 30 Aug 2019 09:34:24 +0000

Google is patching a serious bug in the desktop version of its Chrome browser that could let an attacker take over a computer simply by luring them to a website.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/HwRH9qy2X3g” height=”1″ width=”1″ alt=””/>