Archive for the Uncategorized Category

By Eduard Kovacs

WordPress 5.8.3, a security release that became available last week, patches four injection-related vulnerabilities.

Two of the flaws are SQL injections — one affects WP_Meta_Query (discovered by Ben Bidner of the WordPress security team) and one affects WP_Query (discovered by ngocnb and khuyenn of GiaoHangTietKiem JSC).

read more

…read more

Source:: securityweek

By Ryan Naraine

The so-called ‘great resignation’ currently upending the U.S. labor market is starting to affect cybersecurity programs with a growing number of senior leaders opting for early retirement and mid-level managers leaving in droves for less stressful, fully remote work opportunities.

read more

…read more

Source:: securityweek

The 2022 Insight Intelligent Technology Report found that security is a top priority for IT leaders in multiple facets of their work, including taking on new responsibilities and integrating cloud technology.

…read more

Source:: Security magazin

By Eduard Kovacs

Several U.S. government agencies have issued a joint cybersecurity advisory to provide an overview of cyber operations linked to Russia. The advisory comes as tensions mount over a potential Russian invasion of Ukraine.

read more

…read more

Source:: securityweek

By Lisa Vaas

Most Windows versions are at risk of remote, unprivileged attackers abusing RDP from the inside to hijack smart cards and get unauthorized file system access. …read more

Source:: Threat Post

Cybersecurity executive Neda Pitt has been appointed the new Chief Information Security Officer (CISO) at Globality, a vendor sourcing platform for enterprise organizations.

…read more

Source:: Security magazin

By Eduard Kovacs

White House summit on open source software security

read more

…read more

Source:: securityweek

By Becky Bracken

UniCC controlled 30 percent of the stolen payment-card data market; leaving analysts eyeing what’s next. …read more

Source:: Threat Post

Russian internal intelligence agency Federal Security Service (FSB) says that it shut down the REvil ransomware group.

…read more

Source:: Security magazin

By Eduard Kovacs

Europol on Tuesday announced the shutdown of VPNLab, a VPN service that had often been used by cybercriminals.

VPNLab has been shut down after law enforcement authorities seized 15 servers across 10 countries. Police in Germany, the Czech Republic, France, Latvia, Hungary, Ukraine, the UK, the US, and Canada took part in the operation.

read more

…read more

Source:: securityweek