CMS and Cybersecurity - Information Management Today

Drupal developers fixed a code execution flaw in the popular CMS

Security Affairs

JULY 25, 2022

The US Cybersecurity and Infrastructure Security Agency (CISA) published an advisory for the above vulnerabilities. . The post Drupal developers fixed a code execution flaw in the popular CMS appeared first on Security Affairs. The most severe one, rated as “critical,” is an arbitrary PHP code execution tracked as CVE-2022-25277.

CMS

CMS Access Cybersecurity Security

HHS OIG: Medicare Should Require Hospital Device Security

Data Breach Today

JUNE 30, 2021

CMS Says It's Considering New Cybersecurity Requirements The Centers for Medicare and Medicaid Services is considering new cybersecurity requirements for hospitals participating in Medicare after a watchdog agency recommended CMS should require the facilities to address the cybersecurity of their networked medical devices.

CMS

CMS Cybersecurity Security IT

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

LFI CVE-2018-16763 Fuel CMS 1.4.1 ” Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. The post EnemyBot malware adds new exploits to target CMS servers and Android devices appeared first on Security Affairs. Pierluigi Paganini.

CMS

CMS IoT Passwords Security

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Multiple XSS flaws in Joomla can lead to remote code execution

Security Affairs

FEBRUARY 22, 2024

Joomla maintainers have addressed multiple vulnerabilities in the popular content management system (CMS) that can lead to execute arbitrary code. The impact of these flaws can be widespread because roughly 2% of all websites use Joomla, millions of websites worldwide use this CMS. The maintainers of the Joomla!

CMS

CMS Access Cybersecurity Risk

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Security Affairs

JANUARY 23, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) this week added seventeen actively exploited vulnerabilities to the Catalog. CVE Number CVE Title Required Action Due Date CVE-2021-32648 October CMS Improper Authentication 2/1/2022 CVE-2021-21315 System Information Library for node.js

CMS

CMS IT Authentication Libraries

Expert found critical flaws in OpenText Enterprise Content Management System

Security Affairs

JANUARY 22, 2023

Armin Stock (Atos), researcher at cybersecurity firm Sec Consult, discovered multiple vulnerabilities in the OpenText enterprise content management (ECM) product. The OpenText enterprise content management (ECM) system is affected by multiple vulnerabilities, including a critical RCE.

ECM

ECM CMS Authentication Cybersecurity

Russia-linked Turla APT uses new TinyTurla-NG backdoor to spy on Polish NGOs

Security Affairs

FEBRUARY 16, 2024

The cybersecurity firm identified three different TinyTurla-NG samples, and gained access to two of them. Threat actors compromised the websites running vulnerable versions of the popular CMS, including 4.4.20, 5.0.21, 5.1.18 This latest campaign began at least on December 18, 2023, and was still active as recently as January 27, 2024.

CMS

CMS File names Passwords Access

Experts warn of an emerging Python-based credential harvester named Legion

Security Affairs

APRIL 17, 2023

Legion exploits web servers running Content Management Systems (CMS), PHP, or PHP-based frameworks such as Laravel. “From these targeted servers, the tool uses a number of RegEx patterns to extract credentials for various web services. The experts believe that the tool is widely distributed and is likely paid malware.

CMS

CMS Education Cloud Phishing

Cybersecurity in utilities: Critical questions for securing distributed energy resources (DERs)

CGI

JUNE 17, 2019

Cybersecurity in utilities: Critical questions for securing distributed energy resources (DERs). From a cybersecurity perspective, DERs pose new and unique challenges for utilities. This platform, together with the CGI’s CMS, enables aggregators, DSOs and TSOs to securely integrate assets and central markets.

Energy and Utilities

Energy and Utilities Cybersecurity CMS Security

Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed

Security Affairs

JUNE 17, 2022

This allowed the attacker to intercept user credentials and session cookies from administrative access to the websites’ content management system (CMS).” Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. ” states the report.”Volexity

CMS

CMS IT Authentication Access

Researchers analyzed a new JavaScript skimmer used by Magecart threat actors

Security Affairs

SEPTEMBER 2, 2022

com #magecart #infosec #cybersecurity #malware [link] pic.twitter.com/x8VrkKzXPc — Luke Leal (@rootprivilege) August 26, 2022. In Magecart attacks against Magento e-stores, attackers attempt to exploit vulnerabilities in the popular CMS to gain access to the source code of the website and inject malicious JavaScript.

CMS

CMS Digital transformation Cybersecurity Access

CISA adds Log4Shell Log4j flaw to the Known Exploited Vulnerabilities Catalog

Security Affairs

DECEMBER 13, 2021

Cybersecurity and Infrastructure Security Agency (CISA) added 13 new vulnerabilities to the Known Exploited Vulnerabilities Catalog , including recently disclosed Apache Log4Shell Log4j and Fortinet FortiOS flaws.

CMS

CMS Authentication Libraries Risk

Microsoft fixed Azure AD bug that led to Bing.com results manipulation and account takeover

Security Affairs

APRIL 3, 2023

One of these apps is a content management system (CMS) that powers Bing.com and allowed us to not only modify search results, but also launch high-impact XSS attacks on Bing users.” ” reads the post published by security firm Wiz. “We found several high-impact, vulnerable Microsoft applications.

CMS

CMS Personal data Access Education

Security Affairs newsletter Round 368 by Pierluigi Paganini

Security Affairs

JUNE 5, 2022

Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. I ask you to vote for me again (even if you have already done it), because this vote is for the final.

Security

Security CMS Ransomware Cybersecurity

VulnRecap 2/26/24 – VMWare, Apple, ScreenConnect Face Risks

eSecurity Planet

FEBRUARY 26, 2024

To secure sensitive data, cybersecurity specialists, software vendors, and end users should encourage collaborative efforts against malicious activities. February 21, 2024 5 Vulnerabilities Impact Joomla CMS Type of vulnerability: Mail address escaping, XSS, and remote code execution.

Risk

Risk Authentication Systems administration Ransomware

CISA warns of potential critical threats following attacks against Ukraine

Security Affairs

JANUARY 19, 2022

Cybersecurity and Infrastructure Security Agency (CISA) warned organizations about “potential critical threats” following the recent cyberattacks that hit Ukraine. The October CMS vulnerability was added by CISA this week to its Known Exploited Vulnerabilities Catalog.

CMS

CMS Ransomware Cybersecurity Government

Magecart attacks are still around but are more difficult to detect

Security Affairs

JUNE 22, 2022

net/static/counter.js [link] #infosec #cybersecurity #malware pic.twitter.com/F6LJ6CBCCA — Luke Leal (@rootprivilege) June 13, 2022. The researchers explained that they have generally seen less skimming attacks during the past several months, perhaps because they were more focused on the Magento CMS. staticounter[.]net

Cleanup

Cleanup CMS Libraries Phishing

Pro-Russian group Killnet launched DDoS attacks on Romanian govt sites

Security Affairs

APRIL 30, 2022

The attacks originated from compromised websites, most of them use the WordPress CMS. Threat actors planted a malicious JavaScript code, tracked as BrownFlood, in the web pages of the sites to generate the malicious traffic to a list of static URLs included in the JavaScript code.

CMS

CMS Government Cybersecurity Security

Drupal emergency updates fix critical arbitrary PHP code execution

Security Affairs

NOVEMBER 27, 2020

Drupal has released emergency security updates to address a critical vulnerability with known exploits that could be exploited to achieve arbitrary PHP code execution on some CMS versions. The Drupal project uses the PEAR Archive_Tar library that was recently updated to address the CVE-2020-28948 and CVE-2020-28949. and earlier, 8.9,

CMS

CMS Libraries Security Cybersecurity

Azure AD and Thales support for CBA authentication reflects the growing value of high assurance MFA

Thales Cloud Protection & Licensing

MARCH 31, 2022

To help protect the United States from increasingly sophisticated cyber threats, the White House issued Executive Order (EO) 14028 in May 2021 to modernize Federal Government cybersecurity, enhance the software supply chain, and improve detection of cybersecurity vulnerabilities and incidents on federal government networks.

Authentication

Authentication Cloud CMS Phishing

Ongoing DDoS attacks from compromised sites hit Ukraine

Security Affairs

APRIL 28, 2022

The attacks originated from compromised websites, most of them use the WordPress CMS. Threat actors planted a malicious JavaScript code, tracked as BrownFlood, in the web pages of the sites to generate the malicious traffic to a list of static URLs included in the JavaScript code.

CMS

CMS Government Cybersecurity Security

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Please vote for Security Affairs as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog” and others of your choice.

CMS

CMS IoT Passwords IT

Thousands of Magento stores hacked in a few days in largest-ever skimming campaign

Security Affairs

SEPTEMBER 14, 2020

Security experts from cybersecurity firm Sansec reported that nearly 2,000 Magento online stores have been hacked over the past few days as part of the largest ever Magecart-style campaign. Thousands of Magento online stores have been hacked over the past few days as part of the largest ever skimming campaign.

CMS

CMS Cybersecurity Security IT

Journalist Matthew Keys is now charged with an attack on a magazine

Security Affairs

APRIL 29, 2020

When Keys left Tribune Company-owned Sacramento KTXL Fox 40 in 2010, he shared login credentials of the CMS used by the website with members of Anonymous. Please give me your vote for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS [link]. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

CMS

CMS Cybersecurity Government Access

A flaw in WP Reset PRO WordPress plugin allows wiping the installation DB

Security Affairs

NOVEMBER 10, 2021

Researchers from cybersecurity form Packstack have discovered a critical vulnerability in the WP Reset PRO WordPress plugin that could be exploited by an authenticated user to completely wipe the database of a website.

CMS

CMS Authentication Cybersecurity IT

Security Affairs newsletter Round 267

Security Affairs

JUNE 7, 2020

SecurityAffairs – newsletter, cybersecurity). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. The post Security Affairs newsletter Round 267 appeared first on Security Affairs.

Security

Security CMS Ransomware Data breaches

Security Affairs newsletter Round 309

Security Affairs

APRIL 11, 2021

Clop Ransomware operators plunder US universities Malware attack on Applus blocked vehicle inspections in some US states 2,5M+ users can check whether their data were exposed in Facebook data leak 33.4%

Security

Security CMS Military Ransomware

Group with numerous faces: chronicle of UltraRank’s deceptive JS-sniffer campaigns

Security Affairs

AUGUST 27, 2020

In its report, Group-IB Threat Intelligence experts provide evidence linking three campaigns with the use of various JavaScript-sniffer families – an instrument used by cybercriminals to steal text bank card data – previously attributed by cybersecurity researchers to various Magecart groups, to the same hacker group.

Marketing

Marketing Cybersecurity CMS Analytics

The Week in Cyber Security and Data Privacy: 13 – 19 November 2023

IT Governance

NOVEMBER 20, 2023

However, in a very unusual move, ALPHV has also reported its victim to the US SEC (Securities and Exchange Commission) for failing to comply with the new SEC cybersecurity disclosure rules – even though the rules in question do not come into force until December. (

Data Privacy

Data Privacy Privacy Data breaches Security

Unveiling the Balada injector: a malware epidemic in WordPress

Security Affairs

JUNE 14, 2023

CVSS score (High), giving WordPress administrators and cybersecurity teams much to fret over. Cybersecurity firm Sucuri has been tracking Balada Injector activity since 2017 but has only recently given this long-running campaign its name. Basic Balada Injector workflow and capabilities against a WordPress CMS. What is Balada?

Authentication

Authentication CMS Archiving Risk

SQL injection issue in Anti-Spam WordPress Plugin exposes User Data

Security Affairs

MAY 9, 2021

The Spam protection, AntiSpam, FireWall by CleanTalk WordPress plugin has 100,000+ active installations, it allows to filter out spam and trash comments on websites running WordPress CMS.

CMS

CMS Passwords Access IT

More than 460,000 payment card details offered for sale on a black market

Security Affairs

DECEMBER 11, 2019

Group-IB , a Singapore-based cybersecurity company that specializes in preventing cyberattacks, has detected a massive upload of debit and credit card records mostly related to the largest Turkish banks on one of the most popular underground cardshops. More than 455,000 Turkish payment card details are available for sale on a popular forum.

Sales

Sales Marketing CMS Cybersecurity

Recently disclosed Drupal CVE-2019-6340 RCE flaw exploited in the wild

Security Affairs

FEBRUARY 26, 2019

Threat actors in the wild are exploiting the recently patched CVE-2019-6340 flaw in the Drupal CMS to deliver cryptocurrency miners and other payloads. ” Cybersecurity experts at Imperva observed hundreds of attacks against its customers exploiting the CVE-2019-6340 flaw on February 23.

Financial Services

Financial Services CMS Government Security

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

CISA and ENISA sign working arrangement to enhance cooperation The US’s CISA (Cybersecurity and Infrastructure Security Agency) and ENISA (European Union Agency for Cybersecurity) have signed a working arrangement relating to capacity building, the exchange of best practices and boosting situational awareness.

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

IT Governance

DECEMBER 19, 2023

GB Alexander Dennis Source (New) Manufacturing UK Yes 507 GB CMS Spain Source 1 ; source 2 (New) Legal Spain Yes >500 GB West Virginia University Health System Source (New) Healthcare USA Yes 495,331 Dameron Hospital Source 1 ; source 2 (Update) Healthcare USA Yes >480 GB World Emblem Source (New) Manufacturing USA Yes 417.12

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

Information Management Today

Drupal developers fixed a code execution flaw in the popular CMS

HHS OIG: Medicare Should Require Hospital Device Security

Webinars

Trending Sources

EnemyBot malware adds new exploits to target CMS servers and Android devices

Webinars

Multiple XSS flaws in Joomla can lead to remote code execution

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Expert found critical flaws in OpenText Enterprise Content Management System

Russia-linked Turla APT uses new TinyTurla-NG backdoor to spy on Polish NGOs

Experts warn of an emerging Python-based credential harvester named Legion

Cybersecurity in utilities: Critical questions for securing distributed energy resources (DERs)

Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed

Researchers analyzed a new JavaScript skimmer used by Magecart threat actors

CISA adds Log4Shell Log4j flaw to the Known Exploited Vulnerabilities Catalog

Microsoft fixed Azure AD bug that led to Bing.com results manipulation and account takeover

Security Affairs newsletter Round 368 by Pierluigi Paganini

VulnRecap 2/26/24 – VMWare, Apple, ScreenConnect Face Risks

CISA warns of potential critical threats following attacks against Ukraine

Magecart attacks are still around but are more difficult to detect

Pro-Russian group Killnet launched DDoS attacks on Romanian govt sites

Drupal emergency updates fix critical arbitrary PHP code execution

Azure AD and Thales support for CBA authentication reflects the growing value of high assurance MFA

Ongoing DDoS attacks from compromised sites hit Ukraine

Enemybot, a new DDoS botnet appears in the threat landscape

Thousands of Magento stores hacked in a few days in largest-ever skimming campaign

Journalist Matthew Keys is now charged with an attack on a magazine

A flaw in WP Reset PRO WordPress plugin allows wiping the installation DB

Security Affairs newsletter Round 267

Security Affairs newsletter Round 309

Group with numerous faces: chronicle of UltraRank’s deceptive JS-sniffer campaigns

The Week in Cyber Security and Data Privacy: 13 – 19 November 2023

Unveiling the Balada injector: a malware epidemic in WordPress

SQL injection issue in Anti-Spam WordPress Plugin exposes User Data

More than 460,000 payment card details offered for sale on a black market

Recently disclosed Drupal CVE-2019-6340 RCE flaw exploited in the wild

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

Stay Connected