A Guide to Virtual Patching for Website Vulnerabilities
John Booker All software has bugs — but some bugs can lead to serious security vulnerabilities that can impact your website and traffic. Vulnerabilities can be especially…
Browsing Tag
Zero-Day
24 posts
Hacked Website Threat Report – 2019
Rianna MacLeod The threat landscape for website owners is constantly shifting on a regular basis — and it’s becoming increasingly more complex. As attackers continue to develop…
Zero-Day RCE in vBulletin v5.0.0-v5.5.4
Marc-Alexandre Montpas A new remote code execution (RCE) zero-day vulnerability has been disclosed by an anonymous researcher on the full disclosure mailing list this past Monday. This…
Insufficient Privilege Validation in SiteGround Optimizer & Caldera Forms Pro
While investigating the SiteGround Optimizer and Caldera Forms Pro plugins we have discovered a critical privilege escalation vulnerability. It was not being abused externally and…
The Impacts of Zero-Day Attacks
Gerson Ruiz Last week, we explained what zero-day vulnerabilities and attacks are. Essentially, zero-day vulnerabilities exist in the wild, with no patch available to prevent hackers from…
Understanding Zero-Day Vulnerabilities & Attacks
In computer science, a vulnerability is considered to be a zero-day vulnerability if it’s unknown to all parties interested in patching it, such as: The…
Hacking WordPress Sites on Shared Servers
Denis Sinegubko A website is only as safe as the weakest link on its shared server. Once a hacker gains access to one site on the server,…
WP Mobile Detector Vulnerability Being Exploited in the Wild
Douglas Santos ***Update: The WP Mobile Detector plugin has been patched to address the vulnerability. Please update as soon as possible. Note that the latest version don’t…
Analyzing ImageTragick Exploits in the Wild
Daniel Cid Three days ago the ImageMagic (also known as, ImageTragick) vulnerability was released to the world. We’ve been actively monitoring this vulnerability, and have discovered a…
ImageMagick Remote Command Execution Vulnerability
ImageMagick is a popular software used to convert, edit and manipulate images. It has libraries for all common programming languages, including PHP, Python, Ruby and…
Critical 0-day Remote Command Execution Vulnerability in Joomla
Nov 2016 Update: If you need to clean your hacked Joomla site, we have released a new free guide to show you how to identify…