21 Nov 2019

Millions of Sites Exposed by Flaw in Jetpack WordPress Plugin

WordPress website admins and owners are encouraged to immediately apply the Jetpack 7.9.1 critical security update. Vulnerabilities in Jetpack that could leave websites subject to attack have existed since Jetpack 5.1. Jetpack is a popular WordPress plugin that features security, performance and site management services including malware scanning and brute-force

Read More
20 Nov 2019

Huawei Beats Google—Offers $220,000 For ‘Zero-Click’ Android Phone Hacks

Chinese tech giant Huawei launched a bug bounty program last week that will reward bug hunters up to $220,000 for detecting critical weaknesses in its Android devices. This program beats Google’s, who offers up to $200,000 for demonstrations of similar attacks on its Pixel phones. Huawei revealed the program in

Read More
20 Nov 2019

Thousands of Enterprises At Risk Due to Oracle EBS Critical Flaws

Oracle patched vulnerabilities that allow potential attackers to access a company’s entire enterprise resource planning solution, but research reports that 50% of over 21,000 organizations that use Oracle EBS for financial management, supply chain management, customer relationship management, and more have not yet deployed the patches. The patches were released

Read More
14 Nov 2019

Microsoft Patches RCE Bug Actively Under Attack

Microsoft has patched 74 bugs, one under active attack, as part of the Patch Tuesday security roundup. In Internet Explorer, the previously vulnerable Microsoft bug allows attackers to execute rogue code if a user opens a malicious web page of Office document, permitting the attacker to gain control of the

Read More