There has been a new WordPress vulnerability discovered that can give an attacker the ability to delete files on the web server and take control of your web site. This was reported on the WordFence blog on June 27th.
This vulnerability applies to anyone logged in to a WordPress website with user credentials of Author, Editor, or Administrator. These roles have ...
Continue Reading →
Have you ever wondered what happens to the location information your smartphone is collecting about you? Who has access to that information, and for what purpose? As it turns out, as told in a recent report by Brian Krebs, this information is available to pretty much anybody.
A related article in Sophos’ Naked Security blog pointed to a Continue Reading →
This week we have been investigating browser hacking, or the inadvertent disclosure of personal information that is saved and stored by your browser. Today we will be showing several actions you can take to keep your information private.
The best way to protect yourself from a remote attacker is to prevent the remote access malware needed to access your computer from installing ...
Continue Reading →In our last post, we discovered the trove of personal information that our web browser saves automatically, in the form of cookies, temporary Internet files, code snippets, and stored passwords. Today we learn how an attacker could use this information in further exploits against you.
Using the information stored in your browser, an attacker can build a detailed dossier ...
Continue Reading →Did you know that web browsers such as Chrome, Edge, Firefox, Safari, and Internet Explorer save a lot of personal information that a cyber-attacker could us as research to build a web dossier about you, your likes, and your habits? A personal dossier that could be used for a deeper attack?
Did you know that web browsers store parts of web pages ...
Continue Reading →
A quick Saturday digest of cybersecurity news articles from other sources.05/07/2018 08:30 PM EDT Original release date: May 07, 2018
FBI has released the Internet Crime Complaint Center (IC3) 2017 Internet Crime Report, which highlights scams trending online. The top three crime types reported by victims in 2017 were non-payment/non-delivery, personal data breach, and ...
Continue Reading →
If you or someone you know uses a pacemaker from Abbot or St Jude Medical, there is a firmware upgrade waiting for you at your next check-up. Or even sooner, depending on what you and your doctor decide. This upgrade closes a security hole that could allow an unauthorized person or attacker to change programming on the pacemaker. This ...
Password spraying is a new password exploit that is being used effectively against larger networks. It’s become enough of a problem to merit an alert from US-CERT entitled TA18-086A: Brute Force Attacks Conducted by Cyber Actors. Here’s how it works.
Typically, in a traditional brute-force password attack, the password cracking software runs a long list of every possible password against a system. In ...
Continue Reading →
A quick Saturday digest of cybersecurity news articles from other sources.Anger against the Bay Area’s iconic social media firms has reached a “boiling point,” experts say.
The best way to determine if your web site has built in vulnerabilities that an attacker could exploit is to hack your website yourself. This is not typically a do-it-yourself project, unless you have some decent technical skills. But with a little time and a few free downloadable tools, it could be something you could try, if for no ...