The Log4j and Log4Shell vulnerability and exploits are being actively used by threat actors. CISA Updates Advisory on Cyber Actors Continued Exploitation of Log4Shell in VMware Horizon Systems | CISA As predicted Log4j is going to be a problem for a long time – Smart Thinking Solutions
How secure is your WordPress website and blog? Do you even know if your organisation’s website is built on WordPress?
There has been a flurry of WordPress security and vulnerability articles over the past week or so. It is no surprise that the world’s most popular website builder is a target for threat actors, especially as Automatic’s core code can be added to with third-party, open-source or even self-written plugins, …
Cloudflare updates us about the massive DDoS attack they held back
The malware/botnet that instigated the recent DDoS attack has now been given a name by Cloudflare – Mantis. Mantis, the tiny shrimp that launched 3,000 DDoS attacks • The Register Octagon has specified Cloudflare to protect some it’s clients high profile websites. Distributed Denial of Service attacks – Smart Thinking …
Continue reading “Cloudflare updates us about the massive DDoS attack they held back”
Hacking everywhere – even if you use MacOS
I talk about the vulnerabilities in Microsoft products a lot – whatever anyone thinks, in business, we live in a Microsoft world. However I have posts about Linux, MacOS and smartphone OS’s – here is one that can impact Mac users. Uncovering a macOS App Sandbox escape vulnerability: A deep …
Continue reading “Hacking everywhere – even if you use MacOS”
LendingTree suffers a data breach
This a data breach of sensitive client information from the finance company LendingTree – the data is apparently for sale on the Dark Web: LendingTree denies connection to data breach affecting 200,000, but confirms a different one – The Record by Recorded Future
