Browsing Tag
XSS
16 posts
XSS and OAuth Combo Threatens Millions of Users Due to Hotjar Flaw
Cybersecurity Experts Uncover Critical Vulnerabilities in Leading Web Analytics Platform Hotjar, Potentially Exposing Sensitive Data of Millions of…
July 29, 2024
Stolen Singaporean Identities Sold on Dark Web Starting at $8
Singapore citizens, beware! Cybercriminals are targeting your digital identities and KYC data, starting at just $8, putting users at risk of exploitation. Learn how to protect your data, finances, and reputation with strong passwords, multi-factor authentication, and smart online habits.
June 25, 2024
Mailcow Patches Critical XSS and File Overwrite Flaws – Update NOW
Mailcow email servers faced critical vulnerabilities (CVE-2024-31204 and CVE-2024-30270) allowing potential remote code execution. Update to Mailcow 2024-04 (Moopril Update) to patch the security holes and keep your email server safe.
June 24, 2024
Popular WordPress Plugins Leave Millions Open to Backdoor Attacks
Fastly researchers discover unauthenticated stored XSS attacks plaguing WordPress Plugins including WP Meta SEO, and the popular WP…
June 3, 2024
LiteSpeed Cache Plugin XSS Vulnerability Affects 1.8M WordPress Sites
Is your WordPress site using LiteSpeed Cache? A recent surge in malicious JavaScript injections targets vulnerable versions. Learn how to identify the signs of infection and prevent future attacks. Patch, scan, and secure your WordPress site today!
May 8, 2024
New ResumeLooters Gang Targets Job Seekers, Steals Millions of Resumes
So far, the gang has mostly targeted job seekers in the APAC (Asia Pacific) region.
February 6, 2024
Gamers Warned of Potential CS2 Exploit That Can Reveal IP Addresses
Gaming influencers are advising CS2 players to refrain from playing the game at the moment.
December 11, 2023
ProtonMail Code Vulnerabilities Leaked Emails
Key Findings ProtonMail, a popular Swiss-based email service that markets itself as a secure and private alternative to…
September 7, 2023
Vulnerability Enabled Bing.com Takeover, Search Result Manipulation
Cybersecurity researchers at Wiz reported the vulnerability to Microsoft and dubbed the attack “BingBang”.
March 30, 2023
Unpatched flaws exposing Linux marketplaces to remote attacks
The vulnerabilities remain unpatched and can be exploited to launch supply-chain attacks or achieve RCE against Linux marketplaces.
June 23, 2021