Malicious Apps steal passwords – Details

Meta warns: These apps steal passwords Details: Android Apps: —————————————- Android Package Name | App Name —————————————- al.puik.cus | CallShowLite | Apex Race Game callerscreen.paper.ringshow | CallerPaper Show com.abs.provideo_editor | Video Converter Master | Acetoon Photo Cartoon com.addtextcoon.shapermoter | Photo Frame PIP Collage Maker com.adonarusso.daily.horoscope | ZodiHoroscope – Fortune Finder com.ads_manager_helper | Ads Manager Helper | Ad Optimization Meta com.adsagency.socialmng | […]

WordPress Zero-Day Vulnerability in Plugin WPGateway

PSA: Zero-Day Vulnerability in WPGateway Actively Exploited in the Wild! On September 8, 2022, the Wordfence Threat Intelligence team became aware of an actively exploited zero-day vulnerability being used to add a malicious administrator user to sites running the WPGateway plugin. Details

WordPress Security – Please update now!

WordPress 6.0.2 Security and Maintenance Release This security and maintenance release features 12 bug fixes on Core, 5 bug fixes for the Block Editor, and 3 security fixes. Because this is a security release, it is recommended that you update your sites immediately.

PrestaShop – Major Security Vulnerability Update now!

A NEWLY FOUND EXPLOIT COULD ALLOW REMOTE ATTACKERS TO TAKE CONTROL OF YOUR SHOP. Attackers have found a way to use a security vulnerability to carry out arbitrary code execution in servers running PrestaShop websites. For details, please read the entire article. Details: Please Update now!

Critical Vulnerability in Ninja Forms WordPress Plugin

On June 16, 2022, the Wordfence Threat Intelligence team noticed a back-ported security update in Ninja Forms, a WordPress plugin with over one million active installations. We uncovered a code injection vulnerability that made it possible for unauthenticated attackers to call a limited number of methods in various Ninja Forms classes, including a method that unserialized user-supplied content, resulting in Object Injection. This could allow […]

WordPress UpdraftPlus Severe Vulnerability

The WordPress plugin UpdraftPlus is vulnerable. If exploited, the vulnerability could grant attackers access to privileged information from the affected site’s database (e.g., usernames and hashed passwords). Details:

Trouble sending or receiving emails – reminder

As a reminder if you are having trouble sending or receiving emails. TLS versions 1.0 and 1.1 are no longer supported for email clients and webbrowsers. This can lead to problems receiving and sending emails, if you are still using an email client with an older operating system. To fix these problems, you need to update your operating system and email client software to the […]

WordPress Security Reports

WordPress Security The latest WordPress security news, tips and updates: