Security Alerts & News
by Tymoteusz A. Góral

History
#1484 Vulnerability patched in WordPress theme that allows unrestricted uploads
WordPress theme publisher DynamicPress fixed a flaw Monday that let anyone upload malicious files to sites running its business-themed Neosense WordPress templates, compromise the site and possibly the server hosting it.

Walter Hop, security researcher with Netherlands-based company, Slik, made the discovery last week. The flaw impacts version 1.7 of the Neosense theme. On Monday, DynamicPress released a 1.8 version update that patches the vulnerability. Hop publicly disclosed the vulnerability Monday.
Read more
#1486 DDoS mitigation firm has history of hijacks
#1485 Data-stealing Qadars Trojan malware takes aim at 18 UK banks
#1484 Vulnerability patched in WordPress theme that allows unrestricted uploads
#1483 324,000 payment cards breached, CVVs included
#1482 Fake AV makes it onto Google Play
#1481 Cisco IOS Software Checker
#1480 Untangling the Ripper ATM malware
#1479 Ransomware's next target: Your car and your home
#1478 Cisco warns of second firewall bug exposed by Shadow Brokers
#1477 Mozilla patching Firefox certificate pinning vulnerability
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12