12 matches found
PT-2026-46380
Unauthenticated Local File Inclusion in Roneous = 2.1.5 versions...
PT-2026-40907
Date: May 14, 2026 Status: ACTIVE GLOBAL EXPLOITATION / PATCH TUESDAY PEAK Target: Microsoft SharePoint Server 2016, 2019, Subscription Edition Severity: 8.8 CRITICAL Remote Code Execution via Deserialization 1. Analysis: Why "Share-Shatter" is Today's Apex Threat While the mobile security sector...
EUVD-2020-0237
Malware in sbrugna...
The importance of managing your SEO strategy in a safe way
As SEO leans towards AI, site owners are more in need of third-party tools, and agencies and updating…...
Google Chrome 71 Touts 43 Fixes, Fights Ad Abuse
Google officially lifted the curtain on Chrome 71 for Windows, Mac and Linux on Tuesday. The latest browser version touts new security features and a slew of fixes. Overall, Google issued 43 patches with the security update for Chrome 71. The newest version, 71.0.3578.80, included an array of hig...
Who and What Is Coinhive?
Multiple security firms recently identified cryptocurrency mining service Coinhive as the top malicious threat to Web users, thanks to the tendency for Coinhive's computer code to be used on hacked Web sites to steal the processing power of its visitors' devices. This post looks at how Coinhive...
Reflected XSS Bug Patched in Popular WooCommerce WordPress Plugin
An extension of the WooCommerce WordPress plugin, used by 28 percent of all online stores, has been patched against a reflected cross-site scripting vulnerability. The vulnerability was found in the Product Vendors plugin, which allows an existing ecommerce site to support multiple vendors,...
Google Reminding Admins HTTP Pages Will Be Marked 'Not Secure' in October
Google began sending out notices to site owners this month, reminding those who haven’t yet migrated from HTTP to HTTPS that in October their sites will be marked “NOT SECURE.” The warnings are directed to owners of HTTP pages that contain forms, specifically sites that include text input fields...
Moving From Do Not Track to Can Not Track
NEW YORK–The movement in the security and privacy communities to push the Do Not Track standard as an answer to the problem of pervasive online tracking by ad companies and other entities has resulted in the major browser vendors including DNT as an option for users, giving them a method for...
Firefox Adds Mixed Content Blocking by Default
The proliferation of SSL-protected sites has been a boon for security conscious Web users in the last couple of years, as more and more sites have taken the step of offering encrypted connections for sensitive sessions. But one of the problems that’s cropped up is that the dynamic nature of today...
Google Debuts Phishing Alert Service
Google has added a feature to its service for network operators that will alert site owners when Google’s automated scanners find a phishing URL on a particular site. The phishing-URL alert service is an addition to the existing set of services that Google offers for site owners to help them...
Mozilla Releases Preview Builds of Firefox with Content Security Policy
Mozilla has released a preview build of Firefox that includes its new Content Security Policy specification, a framework that’s designed to enable site owners to protect against common Web-based attacks. The CSP specification is Mozilla’s effort to provide Web site operators with a simpler way to...