23 Oct 2020

Botnet Infects Hundreds of Thousands of Websites

A botnet called KashmirBlack has been infecting thousands of websites running on content management systems such as WordPress, Joomla, and Drupal. The botnet uses Dropbox and GitHub to avoid detection and is focused on spamming and defacing hundreds of thousands of websites.  Security firm Imperva was the first to report

Read More
09 Sep 2020

Researchers Uncover 89 Zero-Days in CMS Platforms

Popular content management system (CMS) platforms may be vulnerable to a plethora of cyber threats, according to security researchers. Recently, a team at Comparitech investigated the recent surge in web defacement attacks, eventually leading to the discovery of 89 zero-day vulnerabilities in CMS platforms. In July 2019, there were roughly

Read More
08 Nov 2019

Between 200,000 and 240,000 Magento online stores will reach EOL next year

Between 200,000 and 240,000 e-commerce websites are still running Magento 1.x, an older version of the popular content management system (CMS) that will reach End-of-Life (EOL) in June of next year. Researchers with Sucuri warn that if these websites do not switch to Magento 2.x by then, they will inevitably

Read More
29 Mar 2019

Hundreds of compromised WordPress and Joomla websites are serving up malware to visitors

Researchers with Zscaler warn that threat actors are increasingly trying to take advantage of flaws in the immensely popular content management systems (CMSs) WordPress and Joomla in order to get legitimate websites to target users with malicious payloads. In the past month, the researchers detected thousands of attacks, hundreds of

Read More