You searched for Wordpress | SC Media

Your search for Wordpress returned 256 results

Your search for Wordpress returned 256 results

Sort Results:

Relevant Recent
Israel comes under cyber attack
APTs/cyberespionage, Government/Defense, Security News

Israeli websites defaced, as more offensive cyber activity flares up in Middle East

Following a month of cyberattacks involving Iran and Israel, experts are reluctant to predict all-out digital warfare between the nation states, despite the obvious recent tit for tat that underscores age-old, religion-based tensions. The latest possible salvo came May 21, when approximately 1,000 corporate and manufacturing targets within Israel were afflicted with defacements and denial…
Security News, Vulnerabilities

900,000 WordPress sites attacked via XSS vulnerabilities

Nearly 1 million WordPress sites are being hit by what is likely a single threat actor attempting to inject a redirect into the sites by exploiting a cross site scripting vulnerability. The attacks were discovered by the WordFence Threat Intelligence Team, which noted that since April 28 the number of XSS attacks has been 30…
Cybercrime, Security News

WordPress WooCommerce sites targeted by credit card skimmers

Credit card swipers are more often than not found inside online and brick and mortar retail point of sale systems, but a newer version has been targeting WordPress sites that use the WooCommerce plugin. WordPress sites using WooCommerce have been attacked before, but not with card swipers. Instead attackers focused on redirecting payments from the…
Operators again revive Pushdo botnet, use a popular tactic to stay hidden
Cybercrime, Malware, Security News

Years-long malware operation hides njRAT in cracked hacking tools

Malicious actors have been secretly embedding the njRAT remote access trojan in free hacking tools as well as cracks of those tools, in a bid to compromise anyone who downloads this software from various websites and forums. Essentially, this adversary is trying to turn other hackers into victims, taking over their machines for reasons that could…
Privacy & Compliance News and Analysis, Security News, Website/Web Server Security

WordPress GDPR Cookie Consent plugin patched

A patch released this week for WordPress GDPR Cookie Consent plugin used by more than 700,000 websites fixed critical vulnerabilities that would let attackers change and delete content as well as inject malicious JavaScript code. The GDPR Cookie Consent plugin aids sites in complying with EU GDPR/Cookie Law regulations and is maintained by WebToffee. Noting…
Malware, Security News

Malware redirecting visitors found on 2,000 WordPress sites

More than 2,000 WordPress sites have been infected with malicious JavaScript that redirects visitors to scam websites and sets the stage for additional malware to be downloaded at a later time. The Sucuri team said access is gained to WordPress sites through plugin vulnerabilities, including Simple Fields and CP Contact Form with PayPal. A large…
Network Security, Security News

Mushtik botnet now shopping for Tomato routers

A new variant of the Mushtik botnet has been found attacking routers using the open-source Tomato router firmware with about 4.600 routers currently exposed on the internet. Musthtik has been operating since March 2018 using a worm-like propagating ability to infect and harvest Linux servers and IoT devices. The good news is the new variant…
Features, Security News

2019 Data breaches

Data on 92M Brazilians found for sale on underground forums  In October 92 million Brazilians had their name, birth date, mother’s name, gender and tax details including taxpayer IDs exposed contained in a Brazilian government 16GB SQL database was found for sale on a dark web forum.  DoorDash data breach hits 4.9 million customers, merchants and…
Security News, Vulnerabilities

WordPress patches four security vulnerabilities

WordPress has pushed out version 5.3.1 patching four security issues. WordPress versions 5.3 and earlier are affected and the company is recommending users download the new version, which is a short-cycle maintenance release and soon will be superseded by a full update when version 5.4 is released. The company did not make note of any…
Cybercrime, Malware, Security News

Researchers: WP-VCD malware is No. 1 in WordPress infections since August

Researchers at WordFence have eyed a recent uptick in attacks on WordPress involving WP-VCD backdoor malware. Since August 2019, no other WordPress-targeting malware has yielded a higher rate of new infections that WP-VCD, the company reported this week in a blog post and in-depth white paper. Such findings suggest that the malware, whose main purpose…
Next post in Malware