Security researchers announced on Monday that there had been a supply chain attack on up to 36,000 WordPress plugins running on a wide range of...
Vous n'êtes pas connecté
A threat actor modified the source code of at least five plugins hosted on WordPress.org to include malicious PHP scripts that create new accounts with administrative privileges on websites running them. [...]
Security researchers announced on Monday that there had been a supply chain attack on up to 36,000 WordPress plugins running on a wide range of...
Multiple WordPress plugins have been backdoored to inject malicious code that makes it possible to create rogue administrator accounts with the aim of...
On June 24th, 2024, the Wordfence Threat Intelligence Team became aware of a WordPress plugin, Social Warfare, that was infected with malware through...
Google has taken steps to block ads for e-commerce sites that use the Polyfill.io service after a Chinese company acquired the domain and modified the...
Over 100,000 sites have been impacted in a supply chain attack by the Polyfill.io service after a Chinese company acquired the domain and the script...
Scripts turn malicious, infect webpages after Chinese CDN swallows domain The polyfill.io domain is being used to infect more than 100,000 websites...
Tim looks grim: 10 year old vulnerabilities in widely used dev tool include a CVSS 10.0 remote code execution bug. The post ‘Perfect 10’ Apple...
Our latest research has found that clickable links on websites can often be redirected to malicious destinations. We call these "hijackable...
Mainz, Germany, June 19th, 2024, Chainwire Shutter, an open-source protocol initially developed by brainbot and focused on preventing malicious...
Cloudflare, a lead provider of content delivery network (CDN) services, cloud security, and DDoS protection has warned that it has not authorized...