Chrome will alert users who visit HTTP sites more often

Google logo

Google has announced a number of changes to their popular Chrome browser. From version 62 onward additional warnings will be displayed on http sites. These additional warnings will be displayed for example in Incognito Mode and when filling out online forms.

Google tells us that the changes will take effect in October. The search giant writes that in principle all data entered by users on a website should be inaccessible to third parties.

Read more ...

VMware Update Fixes Critical Remote Code Execution Vulnerability

VMWare logo

VMware has fixed a critical flaw in its vCenter Server that could be exploited to execute code remotely. The vulnerability affects vCenter versions 6.5 and 6.0. Users are urged to upgrade to versions 6.5c or 6.0U3b.

US-CERT warned about the vulnerability, stressing exploitation could result in an attacker taking control of an affected system, in an alert posted on Friday.

Read more ...

WordPress Sites Attacked Through Vulnerable Home Routers

Wordpress logo

Attackers are hijacking vulnerable home routers to launch attacks against WordPress sites. The attacks exploit two flaws in the TR-069 router management protocol to send malicious requests to port 7547. Experts have been advising home users to limit access to port 7547.

Internet service providers (ISPs) could take steps to help prevent these attacks by filtering traffic coming from the public Internet that is targeting port 7547.

Read more ...

cPanel TSR-2017-0002 Announcement

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system.

cPanel has rated these updates as having CVSSv3 scores ranging from 2.4 to 8.8.

Read more ...

WordPress 4.7.2 security update

WordPress 4.7.2 was released last Thursday, January 26th.

Wordpress have just announced that In addition to the three security vulnerabilities mentioned in the original release post, WordPress 4.7 and 4.7.1 had one additional vulnerability for which disclosure was delayed.

Read more ...

Powered by Spearhead Software Labs Joomla Facebook Like Button

RSS Feed

Woktron Live Chat