The popular social media sharing plugin Social Warfare has a dangerous security vulnerability that is being actively exploited in the wild. We are already seeing that this vulnerability is being exploited with some of our clients. An update has been…
Recent email-spam trend claiming your email/computer was hacked
While spam is always a constant pain in the you know what, a recent trend has grabbed a certain amount of attention and a fair number of our clients have been in touch with concerns that they’ve been hacked and…
WooCommerce patch released addressing WordPress design flaw
A researcher at RIPS Technologies GmbH, Simon Scannell, detected and reported a file deletion vulnerability in WooCommerce, a very popular WordPress plugin for e-shops, that allows shop managers to delete certain files and then take over any administrator account. This…
Posted in Security and Vulnerabilities
Drupal core – Highly critical – Remote Code Execution
A highly critical vulnerability was made public today (SA-CORE-2018-002). This is a very serious remote code execution vulnerability within multiple subsystems of Drupal 7.x and 8.x, allowing attackers to potentially compromise the site, using multiple attack vectors. It is highly…
Posted in Security and Vulnerabilities
Meltdown and Spectre – Intel CPU Bug
Earlier this week, a number of very serious security vulnerabilities were disclosed (CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754). As we’ve been made aware of these security flaws that originally appeared to be affecting Intel processor chips, that could circumvent the contents of…
