Fancy Product Designer, a WordPress plugin installed on over 17,000 sites, has been discovered to contain a critical file upload vulnerability that’s being actively exploited in the wild to upload malware onto sites that have the plugin installed. Wordfence’s threat intelligence team, which discovered the flaw, said it reported the issue to the plugin’s developer on May 31. While the […]

Компания Apple разработала новую технологию обнаружения материалов, содержащих сцены сексуального насилия над детьми, на устройствах, подключённых к сервису iCloud – если компания найдёт подобные материалы, об этом будет сообщено полиции, пишет в пятницу silicon.co.uk. Apple утверждает, что инструмент «поможет защитить детей от хищников, которые используют инструменты коммуникации для совращения и эксплуатации несовершеннолетних, а также ограничит распространение детской порнографии». Как объяснили […]

Its only been a month when Microsoft warned about possible attempts of state-sponsored cybercriminals, particularly Iranian hackers, to disrupt the upcoming US presidential elections. Now Twitter was forced to delete over 100 accounts for the same reason. On Wednesday, Twitter announced that it has shut down around 130 fake Iran-linked accounts after receiving alerts from the FBI that their users […]

Недостаточная безопасность пользователей является проблемой, которую должен решить разработчик сайта. Возможно это недостаток стандартов, а может аудита? Это вторая часть статьи, посвященной этим вопросам, основываясь на стандартной процедуре аудита, которая оценивает вашу безопасность. Проверьте систему аутентификации на вашем сайте, отвечая на нижеследующие вопросы. В первой статье проводился анализ имен пользователей и паролей. Эта часть статьи будет посвящена анонимности пользователя, аутентификации […]

We (Netragard) have been meaning to say Thank You to Anonymous for a long time now. With that said, Netragard does not condone the actions of Anonymous, nor the damage they have caused.   What Anonymous has demonstrated, and continues to demonstrate, is just how poorly most network infrastructures are managed from a security perspective (globally, not just within the […]

Advertising for legal services is slowly but surely advancing. Lawyers first won the right to advertise in newspapers, then they progressed to phone books, and now they have moved online. But a handful of enterprising lawyers aren’t satisfied with traditional digital ads, instead they choose to advertise their services on underground markets and the dark web. Their motives are mixed—some […]

There’s a famous adage that states, “if you’re not paying for a service, then perhaps you are the product.” This couldn’t be truer today when we see different social media platforms profiteering off user-generated content from all sides. But, what about free VPNs (virtual private networks)? Would they fall into the same league and so is it a bad idea […]

Cybersecurity concerns remain top of mind for global CEOs as they weigh the challenges their organizations will face in the next five to 10 years. A new report by global management consultancy EY reveals that cybersecurity tops the list of concerns for CEOs, along with income inequality and job loss caused by technology advances. The findings in EY’s 2019 CEO […]

After back-to-back security patches, Google has now released Chrome 87. While this browser also includes bug fixes, it introduces some feature upgrades as well. Google Chrome has recently rolled out the Chrome 87 stable version for the users. Announcing the release via a blog post , Google Chrome Product Manager, Mark Chang, elaborated on the changes in it. Briefly, Google […]

Adobe has recently released patches for multiple security vulnerabilities affecting its e-commerce platform Magento. As revealed via Adobe’s advisory , these also include some critical and important severity security flaws. Again, these bug fixes arrive outside of the scheduled monthly updates. Reportedly, Adobe has addressed two critical vulnerabilities affecting the Magento Platform. Specifically, these vulnerabilities affected Magento Commerce 2 (formerly […]