Tag: security flaw

Here you will find all the articles with the tag: security flaw.

WordPress security plugin AIOS saved passwords as plain text

WordPress security plugin AIOS saved passwords as plain text

The WordPress security plugin All-In-One Security (AIOS) created a security flaw of its own accord. Because of a bug, the tool collected passwords and stored them as plain text in a database. AIOS for WordPress is installed on more than 1 million websites and provides security for WordPress webs... Read more

date9 months ago
‘ChatGPT creates mostly insecure code’

‘ChatGPT creates mostly insecure code’

Moreover, the chatbot fails to alert users to its coding defects - even though it could do so. This week The Register reported on research that shows ChatGPT not only produces mostly insecure code but also fails to alert users to its inadequacies. The striking thing is that it is perfectly capab... Read more

date11 months ago
Hacking campaign uses infected James Webb Telescope image

Hacking campaign uses infected James Webb Telescope image

Investigators discovered a new malware campaign that uses gigapixel images from the James Web Project to distribute malware on target computers. The James Web Telescope (JWST) was launched after more than two decades of planning and development. It's a turning point for astronomy, but sadly also... Read more

date2 years ago
PyPI packages under attack after phishers target developers

PyPI packages under attack after phishers target developers

Developers and maintainers of PyPI are under attack by digital scammers through email phishing. Several PyPI developers and maintainers have fallen for phishing scams conducted by digital scammers. The malicious campaign was disclosed by Adam Johnson, a project board member at Django, who receiv... Read more

date2 years ago
New phishing scam targets Microsoft 365 accounts of executives

New phishing scam targets Microsoft 365 accounts of executives

Mitiga finds the Microsoft 365 accounts of business executives under attack by malicious attackers who use a combined strategy of spear phishing and man-in-the-middle methods. Cybersecurity firm Mitiga disclosed that a dubious Business Email Compromise (BEC) campaign is continuously targeting Mi... Read more

date2 years ago
Microsoft advises Mac users to patch

Microsoft advises Mac users to patch

An exploit in macOS could allow hackers to bypass sandbox securities and execute code. Microsoft urges users to patch as soon as possible. Microsoft researchers identified a flaw in macOS. The flaw allows hackers to bypass macOS' Sandbox App and execute code on targeted systems. According to Ap... Read more

date2 years ago
White hats reported Kaseya VSA flaw in April

White hats reported Kaseya VSA flaw in April

One of the vulnerabilities found in Kaseya's IT management software was reported to the vendor earlier this year in April. However, there was not enough time to get a patch ready, and subsequently, the bug ended up being exploited by attackers who managed to affect up to 1,500 businesses. As man... Read more

date3 years ago
Vulnerability in Microsoft Teams could have compromised accounts

Vulnerability in Microsoft Teams could have compromised accounts

Microsoft recently released a patch for a severe flaw found in Teams, that could have allowed bad actors to breach a user’s account. The vulnerability was discovered by Evan Grant, who works at Tenable, and is related to a feature in Microsoft Teams that allows users to launch apps as tabs within... Read more

date3 years ago
1 2