Recent Security News
-
SEC Investigating Progress Software Over MOVEit Hack
October 12, 2023 at 01:12PM The US Securities and Exchange Commission (SEC) has launched an investigation into Progress Software’s MOVEit transfer tool vulnerability, which exposed the data of over 2,000 organizations and 60 million individuals. The flaw, tracked as CVE-2023-34362, was exploited by the Cl0p ransomware group to steal data. Progress Software received a subpoena…
-
The Cyberwar Between the East and the West Goes Through Africa
October 12, 2023 at 01:03PM Nation-state hackers play a significant role in cyber warfare. Understanding the geopolitical dynamics is crucial for addressing nation-backed cyber threats. Africa, particularly South Africa, serves as a bridge between the East and West, making it vulnerable to cyberattacks. Collaboration between the West and Africa is essential for countering these attacks…
-
Apple fixes iOS Kernel zero-day vulnerability on older iPhones
October 12, 2023 at 12:46PM Apple has released security updates for older iPhones and iPads to address two zero-day vulnerabilities that were being exploited in attacks. The first vulnerability allows local attackers to elevate privileges on vulnerable devices, while the second vulnerability could allow threat actors to execute arbitrary code. Although Apple has not confirmed…
-
Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin
October 12, 2023 at 10:55AM A WordPress backdoor that disguises itself as a legitimate plugin has been discovered by security firm Defiant. The backdoor can run as a plugin and perform various functions, including creating an admin account and serving malicious content based on specific filters. It can also be operated remotely by the threat…
-
Backdoor Lurks Behind WordPress Caching Plugin to Hijack Websites
October 12, 2023 at 10:38AM Researchers have discovered a sophisticated malware hidden within an authentic-looking WordPress caching plugin. This malware can create admin accounts and remotely activate plugins, giving threat actors complete control over infected websites. The malware can be difficult to detect and has features like conditional content filtering and file modification capabilities. WordPress…