Eight security flaws and 62 bugs have been addressed with the release of WordPress 4.7.1 on Wednesday. The latest update for the content management system (CMS) has been classified as a security release.
read more
Handling Classified Information: Lessons Learned
Can we Learn From the Blunders of U.S Officials on Their Handling of Classified Information?
read more
Italian Siblings Arrested Over Long-running Cyber Espionage Campaign
Italian siblings Giulio Occhionero and Francesca Maria Occhionero have been arrested in Rome, charged with conducting a long-running cyber espionage campaign against leading Italian politicians, businessmen and Masons.
read more
ZDI Paid Out $2 Million for Vulnerabilities in 2016
Trend Micro’s Zero Day Initiative (ZDI) published 674 advisories last year and paid out nearly $2 million to researchers who submitted vulnerabilities, the company said in its “2016 Retrospective” report.
read more
Powerful “Spora” Ransomware Lets Victims Pay for Immunity
A newly spotted piece of ransomware allows users not only pay to recover their encrypted files, but also for immunity from future attacks, Emsisoft security researchers warn.
read more
Hamas ‘Honey Trap’ Dupes Israeli Soldiers
The smartphones of dozens of Israeli soldiers were hacked by Hamas militants pretending to be attractive young women online, an Israeli military official said Wednesday.
read more
Shadow Brokers Now Selling Windows, AV Exploits in New ZeroNet Marketplace
The group calling itself “Shadow Brokers” has apparently decided to start selling Windows exploits and what appear to be anti-virus bypass tools on a BitTorrent-powered ZeroNet peer to peer web platform.
read more
33,000 Databases Fall in MongoDB Massacre
Nearly 33,000 MongoDB databases have been hijacked as of today, the latest numbers associated with a series of attack campaigns that have been picking up pace over the past couple of weeks show.
read more
Command Execution Vulnerability Patched in Ansible
Updates released on Monday for the Ansible IT automation platform address a security bypass vulnerability that can be exploited to execute arbitrary commands on the Ansible controller and gain access to the hosts connected to it.
read more
RIG Grabs 35% of Exploit Kit Market in December
The RIG exploit kit (EK) managed to grab nearly 35% of the overall EK activity during the last month of 2016, retaining the leading spot in the landscape for the fourth month in a row, Symantec reports.
read more
