X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - BLEEPINGCOMPUTER.COM - A La Une - 25/Jun 19:25

Plugins on WordPress.org backdoored in supply chain attack

A threat actor modified the source code of at least five plugins hosted on WordPress.org to include malicious PHP scripts that create new accounts with administrative privileges on websites running them. [...]

Articles similaires

Sorry! Image not available at this time

Hackers Slip Backdoor into WordPress Plugins in Latest Supply-Chain Attack

itsecuritynews.info - 28/Jun 08:09

  Security researchers announced on Monday that there had been a supply chain attack on up to 36,000 WordPress plugins running on a wide range of...

Sorry! Image not available at this time

Multiple WordPress Plugins Compromised: Hackers Create Rogue Admin Accounts

itsecuritynews.info - 25/Jun 04:08

Multiple WordPress plugins have been backdoored to inject malicious code that makes it possible to create rogue administrator accounts with the aim of...

Sorry! Image not available at this time

Developer Accounts Compromised Due to Credential Reuse in WordPress.org Supply Chain Attack

itsecuritynews.info - 26/Jun 22:09

On June 24th, 2024, the Wordfence Threat Intelligence Team became aware of a WordPress plugin, Social Warfare, that was infected with malware through...

Sorry! Image not available at this time

Over 110,000 Websites Affected by Hijacked Polyfill Supply Chain Attack

itsecuritynews.info - 26/Jun 05:06

Google has taken steps to block ads for e-commerce sites that use the Polyfill.io service after a Chinese company acquired the domain and modified the...

Sorry! Image not available at this time

Polyfill.io JavaScript supply chain attack impacts over 100K sites

bleepingcomputer.com - 25/Jun 18:10

Over 100,000 sites have been impacted in a supply chain attack by the Polyfill.io service after a Chinese company acquired the domain and the script...

Sorry! Image not available at this time

If you’re using Polyfill.io code on your site – like 100,000+ are – remove it immediately

itsecuritynews.info - 26/Jun 00:04

Scripts turn malicious, infect webpages after Chinese CDN swallows domain The polyfill.io domain is being used to infect more than 100,000 websites...

Sorry! Image not available at this time

Phishing Attack Abuses Windows Search Protocol to Deploy Malware

itsecuritynews.info - 16/Jun 18:34

  A recently developed phishing campaign has emerged, leveraging the Windows Search protocol to deliver malicious scripts to unsuspecting users. This...

Sorry! Image not available at this time

Hackers Exploit Legitimate Websites to Deliver BadSpace Windows Backdoor

itsecuritynews.info - 17/Jun 07:08

Legitimate-but-compromised websites are being used as a conduit to deliver a Windows backdoor dubbed BadSpace under the guise of fake browser updates....

Sorry! Image not available at this time

We analyzed the entire web and found a cybersecurity threat lurking in plain sight

techxplore.com - 29/Jun 13:10

Our latest research has found that clickable links on websites can often be redirected to malicious destinations. We call these "hijackable...

Sorry! Image not available at this time

Fake Google Chrome errors trick you into running malicious PowerShell scripts

bleepingcomputer.com - 17/Jun 22:31

A new malware distribution campaign uses fake Google Chrome, Word, and OneDrive errors to trick users into running malicious PowerShell "fixes" that...

Les derniers communiqués