Global CyberSecurity
phpbash – A Terminal Emulator Web Shell
Post Views: 1,734 It’s common for hackers to utilize post-compromise tools that contain a graphical user interface (GUI) that can be loaded in ...
Global CyberSecurity
Missing DMARC Records Lead to Phishing
Post Views: 1,352 Email will continue to be the dominant mode of digital communication for the foreseeable future. However, the email framework was ...
Global CyberSecurity
WordPress Malware Disables Security Plugins to Avoid Detection
Post Views: 1,430 An alarm or monitoring system is a great tool that can be used to improve the security of a home ...
Global CyberSecurity
Reflected XSS in WordPress Plugin Admin Pages
Post Views: 1,269 The administrative dashboard in WordPress is a pretty safe place: Only elevated users can access it. Exploiting a plugin’s admin ...
Global CyberSecurity
Insufficient Privilege Validation in NextScripts: Social Networks Auto-Poster
Post Views: 1,767 NextScripts: Social Networks Auto-Poster is a plugin that automatically publishes posts from your blog to your Social Media accounts such ...
Global CyberSecurity
Critical Vulnerability in File Manager Plugin Affecting 700k WordPress Websites
Post Views: 1,279 Yesterday, the WordPress plugin File Manager was updated, fixing a critical vulnerability allowing any website visitor to gain complete access ...
Global CyberSecurity
Using assert() to Execute Malware in PHP 7 Environments
Post Views: 937 Initially released December 2015, PHP 7 introduced a multitude of performance and security improvements. Approximately 43.7% of websites across the ...
