Global CyberSecurity
Thousands of Sites with Popup Builder Compromised by Balada Injector
Post Views: 884 On December 11, 2023 WPScan published Marc Montpas’ research on the stored XSS vulnerability in the popular Popup Builder plugin ...
Global CyberSecurity
What is the Principle of Least Privilege?
Post Views: 1,007 If you own a website and collaborate with other people, the Principle of Least Privilege (PoLP) is a crucial security ...
Global CyberSecurity
How to Stop a DDoS Attack in 5 Steps
Post Views: 973 As a webmaster, keeping your site online during large traffic spikes is what you strive for. But how can you ...
Global CyberSecurity
WordPress Vulnerability & Patch Roundup December 2023
Post Views: 823 Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are ...
Global CyberSecurity
New Guide: Broken Access Control
Post Views: 1,052 The complexity of modern websites exposes countless potential vulnerabilities to lurking attackers. One of the most underestimated threats? Broken Access ...
Global CyberSecurity
MageCart WordPress Plugin Injects Malicious User & Credit Card Skimmer
Post Views: 751 One of our analysts recently found an interesting malicious plugin injected into a WordPress / WooCommerce ecommerce website which both ...
Global CyberSecurity
What is a Content Security Policy (CSP)
Post Views: 930 It’s always a good idea to be aware of the security issues that might affect your site. For example, cross-site ...
