Recent Security News
-
WordPress Websites Hacked via Royal Elementor Plugin Zero-Day
October 17, 2023 at 05:54AM Researchers have discovered a critical vulnerability in the Royal Elementor Addons and Templates WordPress plugin that has been exploited for over a month. The bug allows attackers to upload arbitrary files to vulnerable sites, leading to remote code execution. The vulnerability has been targeted in over 46,000 attacks, with most…
-
British boffins say aircraft could fly on trash, cutting pollution debt by 80%
October 17, 2023 at 03:35AM Researchers from the National Centre for Atmospheric Science and the University of Manchester have found that sustainable aviation fuels (SAFs) have the potential to reduce emissions by up to 80%. Blends of traditional jet fuel and SAF were tested, showing a significant reduction in emissions. SAFs can be made from…
-
CERT-UA Reports: 11 Ukrainian Telecom Providers Hit by Cyberattacks
October 17, 2023 at 02:09AM Between May and September 2023, at least 11 telecommunication service providers in Ukraine were targeted by threat actors. The attacks, carried out under the name UAC-0165, caused service interruptions for customers. The attackers used reconnaissance and exploitation techniques from previously compromised servers, employing specialized programs for credential theft and remote…
-
Warning: Unpatched Cisco Zero-Day Vulnerability Actively Targeted in the Wild
October 17, 2023 at 01:03AM Cisco has issued a warning about a critical security flaw in its IOS XE software that is being actively exploited. The vulnerability, assigned as CVE-2023-20198, allows remote attackers to create an account with high-level access and gain control of affected systems. The flaw only affects enterprise networking gear with the…
-
Will you meet the directive?
October 16, 2023 at 11:11PM Upcoming changes to cyber security regulations in the US and Europe require organizations to focus on compliance. The SEC mandate in the US will enforce reporting of cyber incidents and the production of a Cyber Report by December 18. The DoD directive specifies that anyone working within the DoD must…