The rare Tuesday post, but this couldn’t wait. If you are running a WordPress site, you need to know this. This was just released by WordFence.
Continue Reading →“Early this morning our team was woken up by systems alerts letting us know that we needed to scale up our attack logging capacity. The number of WordPress attacks we were monitoring per hour had ...
A quick Saturday digest of cybersecurity news articles from other sources.11/16/2017 04:52 PM EST Original release date: November 16, 2017
The Internet of Things refers to any object or device that sends and receives data automatically through the Internet. This rapidly expanding set of “things” includes tags (also known as labels or chips that automatically track objects), sensors, and devices that interact with people and share ...
Continue Reading →
Websites are a popular target for cyber-criminals, because they offer a platform for malicious activity. A hijacked website can be used for hosting malware downloads or phishing landing pages. Personal information stored in a website database about site users, including user names and passwords and other personal information can be extracted, decrypted, and sold on the Dark Web.
I have devoted many articles to properly securing WordPress websites. Now there is ...
Continue Reading →
There is more bad news for WordPress website owners and developers. WordFence has found more instances of popular plug-ins being modified to contain malicious software. The three most recent discoveries are:
WordFence had reported earlier about another ...
Continue Reading →A quick Saturday digest of cybersecurity news articles from other sources.09/12/2017 05:26 PM EDT Original release date: September 12, 2017
US-CERT is aware of a collection of Bluetooth vulnerabilities, known as BlueBorne, potentially affecting millions of unpatched mobile phones, computers, and Internet of Things (IoT) devices. A remote attacker could exploit several of these vulnerabilities to take ...
Continue Reading →This story reads like fiction. OK, not great fiction, but this story illustrates another way that WordPress websites can be hijacked and used to promote a cyber scam.
WordPress websites are often hijacked so a phisher can host their landing page on a site that does not lead back to them. And WordPress sites can be interesting targets for other cyber-criminals who export ...
Continue Reading →
NEW!SIX 60 MINUTE CLASSES
Learn something new! Attend one, some or all.
I know many of the other speakers and this looks like a terrific lineup. Block out the day and get some valuable information you ...
Continue Reading →
SIX 60 MINUTE CLASSES
Learn something new! Attend one, some or all.
I know many of the other speakers and this looks like a terrific lineup. Block out the day and get some valuable information you ...
Continue Reading →
A quick Saturday digest of cybersecurity news articles from other sources.Robots can crack safes faster than humans — and differently. We’re going to have to start thinking about robot adversaries as we design our security systems. From Wired via Schneier.
https://www.wired.com/story/watch-robot-crack-safe/
Over the past month, the Wordfence team has been tracking a ...
Continue Reading →
On Monday and Wednesday we looked at email account hijacking, how it happens, and what can happen after the account is controlled by an attacker. Today we will see how an attacker could use the beachhead they established in your email account to extend their intrusion.
They have already proven that you are susceptible to phishing and other social engineering exploits. So sending the victim other phishing emails that allow more ...
Continue Reading →