WordPress Pushes Out Multiple Flawed Security Updates
WordPress bungles critical security 5.5.2 fix and saves face next day with 5.5.3 update.
Texas Gold-Dealer Mined for Payment Details in Months-Long Data Breach
JM Bullion fell victim to a payment-card skimmer, which was in place for five months.
Scammers Abuse Google Drive to Send Malicious Links
Cybercriminals are sending malicious links to hundreds of thousands of users via Google Drive notifications.
Unpatched Windows Zero-Day Exploited in the Wild for Sandbox Escape
Google Project Zero disclosed the bug before a patch becomes available from Microsoft.
Crippling Cyberattacks, Disinformation Top Concerns for Election Day
Cyber-researchers weigh in on what concerns them the most as the U.S. heads into the final weekend before the presidential election — and they also highlight the positives.
WordPress Patches 3-Year-Old High-Severity RCE Bug
In all, WordPress patched 10 security bugs as part of the release of version 5.5.2 of its web publishing software.
Firestarter Android Malware Abuses Google Firebase Cloud Messaging
The DoNot APT threat group is leveraging the legitimate Google Firebase Cloud Messaging server as a command-and-control (C2) communication mechanism.
Wisc. GOP’s $2.3M MAGA Hat Debacle Showcases Fraud Concerns
Scammers bilked Wisconsin Republicans out of $2.3 million in a basic BEC scam — and anyone working on the upcoming election needs to pay attention.
New Fireware releases
New Fireware releases bpatterson Thu, 10/29/2020 – 18:11 Categories: Network Security WatchGuard published several Fireware releases over the last few weeks. Fireware 12.6.2 Update 3 is now available in the Software Downloads Center. This is an update release to v12.6.2, and includes both bug fixes and updates to some key components. This is the first v12.6.x…
Wroba Mobile Banking Trojan Spreads to the U.S. via Texts
The Roaming Mantis group is targeting the States with a malware that can steal information, harvest financial data and send texts to self-propagate.