These Cybersecurity and Infrastructure Security Agency advisories, cover a number of packages – possibly the one of most interest is Drupal – a popular website content manager, similar to WordPress. Drupal Releases Security Updates | CISA Citrix Releases Security Updates for ADC and Gateway | CISA
School WordPress plug-in is vulnerable to attack
If you use or responsible for a School Management system – check this does not impact you. The ICO takes a dim view of child privacy violations. Researchers find backdoor lurking in WordPress plugin used by schools | Ars Technica
Windows and Linux server both targets for crypto-mining malware
Microsoft is reporting on a new variant of the Sysrv botnet malware – Sysrv-K, that infects both Windows and Linux servers. This malware can compromise a wide range of vulnerabilities including WordPress plug-ins and Spring Cloud. Once in the malware installs and operates the Monero cryptocurrency miner. Monero-mining botnet targets …
Continue reading “Windows and Linux server both targets for crypto-mining malware”
Anatomy of a WordPress hack
We have a WordPress protocol that we enact with cyber security clients, the hosting clients who buy into the full support package and it comes as part of the “Be the Best Consultant You Can website package“. It is needed as WordPress sites are very prolific and so they are …
WordPress as a threat to a secure internet – this is why you need to attend our training course – social engineering attacks are everywhere
It is a long title but it explains exactly what this post is about. The instructions for setting up simple but profitable social engineering and phishing email campaigns are easily available across the ordinary internet, not just the dark web. The software required is free, both the malicious stuff and …