[ThreatPost] Brizy WordPress Plugin Exploit Chains Allow Full Site Takeovers

A stored XSS and arbitrary file-upload bug can be paired with an authorization bypass to wreak havoc.

Source: Read More (Threatpost)

You might be interested in …

[HackerNews] Hackers Breached Colonial Pipeline Using Compromised VPN Password

All posts, HackerNews

The ransomware cartel that masterminded the Colonial Pipeline attack early last month crippled the pipeline operator’s network using a compromised virtual private network (VPN) account password, the latest investigation into the incident has revealed. The development, which was reported by Bloomberg on Friday, involved gaining an initial foothold into the networks as early as April 29 through Source: Read […]

Read More

[SecurityWeek] Biden to Bring Up Russian Hackers Issue With Putin

All posts, Security Week

President Joe Biden said Thursday that Vladimir Putin was not connected to a Russia-based criminal cyber attack on a huge US fuel pipeline but that he will raise the issue at an expected summit. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[ZDNet] NordVPN deal: Save over 65% on a two-year subscription and get a $10 credit

All posts, ZDNet

Not much beats 2 years of maximum-strength VPN protection at a 68% discount plus a $10 store credit, get yours while it lasts. Source: Read More (Latest topics for ZDNet in Security)

Read More