You might be interested in …

[ThreatPost] WordPress Plugin Bug Lets Subscribers Wipe Sites

All posts, ThreatPost

The flaw, found in the Hashthemes Demo Importer plugin, allows any authenticated user to exsanguinate a vulnerable WordPress site, deleting nearly all database content and uploaded media. Source: Read More (Threatpost)

Read More

[HackerNews] Robinhood Trading App Suffers Data Breach Exposing 7 Million Users’ Information

All posts, HackerNews

Robinhood on Monday disclosed a security breach affecting approximately 7 million customers, roughly a┬áthird of its user base, that resulted in unauthorized access of personal information by an unidentified threat actor. The commission-free stock trading and investing platform said the incident happened “late in the evening of November 3,” adding it’s in the process of […]

Read More

Daily NCSC-FI news followup 2020-02-26

Iranian APT Targets Govs With New Malware A new campaign is targeting governments with the ForeLord malware, which steals credentials.. A never before seen credential-stealing malware, dubbed ForeLord, has been uncovered in recent spear phishing emails. Researchers have attributed the campaign to a known Iranian advanced persistence threat (APT) group. Internal Docs Show Why […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.