Browsing tag
Image: zend Short Bytes: The PHP development team has released PHP 7.0.0, marking the new major PHP 7 series. This new version comes with new improvements and a new version of Zend Engine. To make the websites faster and bring better web services to the users, PHP development team has announced the release of PHP 7.0. […]
15-day-old campaign has spiked in past 48 hours, with >5,000 new infections daily. Attackers have hijacked thousands of websites running the WordPress content management system and are using them to infect unsuspecting visitors with potent malware exploits, researchers said Thursday. The campaign began 15 days ago, but over the past 48 hours the number of […]
Short Bytes: WordPress high CPU load bug – We faced it and I am guessing thousands of other blogs hosted on WordPress faced it too, when they upgraded to WordPress 4.3 “Billie”. If not a million-dollar bug, I can definitely call it a bug that almost screwed my several nights as I was trying to fix it. Usually a blog is managed by […]
Potential Security Flaw In Obsolete CMS and Plugins Left Millions of Users Vulnerable To Ransomware. More than 142 million websites have been using outdated Content Management System (CMS) software and plugins that could be exploited by hackers to serve ransomware by injecting malicious scripts into those websites and then redirect the website visitors to the […]
Heimdal Security published an interesting post on the increase in malicious scripts that are being injected into legit websites in order to serve ransomware. Heimdal Security recently published an interesting blog post on the increase in malicious scripts that are being injected into legit websites in order to serve malware. The attackers compromise websites running […]
Heimdal Security researchers have observed a new ransomware campaign that utilizes the Neutrino exploit kit to deliver Teslacrypt ransomware to victims via websites running older version of the WordPress CMS. Researchers also don’t rule out that the attack is carried out via other content management systems (CMSs) or outdated CMS plugins, but most of the […]
Researchers have identified a relatively “common” cross-site scripting flaw (XSS) in some famous WordPress plugins — A coordinated plugin update has been released to address the detected cross-site scripting vulnerability. In case you are using any of the WordPress plugins mentioned below you must install the update released today to eliminate the “common” cross-site scripting vulnerability. Here […]
The US Federal Bureau of Investigation (FBI) has warned the WordPress users and urged them to patch their plugins of the content management system in the wake of recent ISIS hacks and future possibilities. In the recent past, the ISIS supporting cyber criminals have hacked the self-hosted WordPress websites and because of the unpatched plugins […]
According to various sources and local media houses, WordPress.com has been banned in Pakistan. This shocking decision was today taken by the Pakistani government. They have ordered the Internet Service Providers to temporarily block the content management website. The world famous blogging platform WordPress.com and the websites hosted on it can not be accessed in […]
In a shocking decision the government of Pakistan has banned WordPress.com, the world renowned open-source blogging tool and a content management system. Users in the country can’t access WordPress.com nor the blogs hosted on it. However, the Self hosted blogs on WordPress are still accessible. According to Pakistan Telecommunication Authority (PTA), the reason for banning WordPress in the […]
Yet another vulnerability has been found in the Yoast WordPress plugin that can be exploited by attackers allowing them to control the site. Just a week ago, the case was associated with WordPress SEO plugin that is being used by more than a million WordPress websites. However, this time the case is focused on the […]
A number of websites have been put at risk due to a very popular plugin of the WordPress content management platform vulnerability that allows to hackers to attack the websites. Actually, the fault lies in many of the versions of the WordPress Plugin called ‘WordPress SEO by Yoast’ that has over 14 million downloads thus […]
WordPress’s MainWP Child Plugin has vulnerability… and it is very much exploitable. Researchers at Sucuri have identified a vulnerability in the MainWP Child plugin for WordPress, which according to them is potentially exploitable and can allow hackers to fully control any website. Mickael Nadeau, Sucuri’s security and vulnerability researcher, revealed the finding in his blog […]
Over the weekend Incapsula mitigated a unique DDoS attack against a large gaming website, in which WordPress played a key role, yet again. Typically, such application layer DDoS attacks are carried out by host botnets, but this time team Incapsula were surprised to see that the attack originated from approximately 2,500 WordPress sites, including some very […]