article thumbnail

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

You very likely will interact with a content management system (CMS) multiple times today. For instance, the The Last Watchdog article you are reading uses a CMS to store posts, display them in an attractive manner, and provide search capabilities. Security is essential for a CMS. Best security practices.

CMS 262
article thumbnail

New Caesar Cipher Skimmer targets popular CMS used by e-stores

Security Affairs

A new e-skimmer called Caesar Cipher Skimmer is used to compromise multiple CMS, including WordPress, Magento, and OpenCart. Sucuri researchers discovered a new e-skimmer , called Caesar Cipher Skimmer, that was used in recent weeks to target users of e-stores based on popular CMS, including WordPress, Magento, and OpenCart.

CMS 97
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

CMS Now Says 3.1 Million Affected by MOVEit Hack

Data Breach Today

New Estimate Is 3 Times Higher Than Number Agency Initially Publicly Disclosed The U.S. Centers for Medicare and Medicaid Services has updated the scope of the MOVEit hacking breach last year, telling a sister agency that the software supply chain attack affected more than 3.1

CMS 156
article thumbnail

Joomla CMS Patches Critical XSS Vulnerabilities

Data Breach Today

Millions of Websites Potentially at Risk Cross-site scripting vulnerabilities in Joomla, a widely used free-source content management system, were fixed in a patch published Tuesday by the open-source project that maintains the software. The flaws potentially expose millions of websites to attacks that can end with remote code execution.

CMS 174
article thumbnail

Hackers Target Fresh Drupal CMS Flaw to Infiltrate Sites

Data Breach Today

CMS Project Team Patches "Highly Critical" Remote Code Execution Vulnerability Patch alert: Some versions of the popular content management system Drupal have a "highly critical" flaw that attackers can exploit to remotely execute code.

CMS 190
article thumbnail

A flaw in Concrete5 CMS could have allowed website takeover

Security Affairs

A remote code execution (RCE) vulnerability affecting the Concrete5 CMS exposed numerous servers to full takeover, experts warn. A recently addressed remote code execution (RCE) flaw in the Concrete5 CMS exposed numerous websites to attacks. EdgeScan experts also provided a list of recommendations to keep the CMS secure.

CMS 111
article thumbnail

Drupal developers fixed a code execution flaw in the popular CMS

Security Affairs

The post Drupal developers fixed a code execution flaw in the popular CMS appeared first on Security Affairs. Drupal development team released security updates to fix multiple issues, including a critical code execution flaw. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

CMS 111