Vulnerable plugins and themes are the #1 reason WordPress websites get hacked. The weekly WordPress Vulnerability Report powered by WPScan covers recent WordPress plugin, theme, and core vulnerabilities, and what to do if you run one of the vulnerable plugins or themes on your website. Each vulnerability will have a severity rating of Low, Medium, High, or Critical. Responsible disclosure and […]
More info:
https://ithemes.com/wordpress-vulnerability-report-june-2021-part-4/
Many clients that we work with host and operate ecommerce websites which are frequent targets of attackers. The goal of these attacks is to steal credit card details from unsuspecting victims and sell them on the black market for a profit. The online ecommerce environment is diverse, constituting many different content management system (CMS) platforms […]
More info:
http://feedproxy.google.com/~r/sucuri/blog/~3/B9ibYVf85sw/online-credit-card-theft-online-fraud.html
A Critical Vulnerability in VMWare’s vCenter Server threatens some of the largest data centers in the world. An actively exploited 0-day in macOS was used to take screen shots of infected computers. CodeCov claims another victim as Japanese e-Commerce unicorn Mercari reports a massive data breach. Domino’s India and Air India suffer from large-scale data […]
More info:
https://www.wordfence.com/blog/2021/05/episode-119-critical-vmware-vulnerability-threatens-data-centers/
Recently, a client’s customers were receiving a warning from their anti-virus software when they navigated to the checkout page of the client’s ecommerce website. Antivirus software such as Kaspersky and ESET would issue a warning but only once a product had been added to the cart and a customer was about to enter their payment […]
More info:
http://feedproxy.google.com/~r/sucuri/blog/~3/-ThPbwpFtXw/woocommerce-credit-card-skimmer.html
