02 Jun 2021

XSS vulnerability found in popular WYSIWYG website editor

Security consultant at Bishop Fox Chris Davis recently discovered and publicly disclosed a new vulnerability in a popular tool used by at least 30,000 websites, a WYSIWYG editor. The bug is tracked as CVE-2021-28114 and impacts Froala version 3.2.6 and earlier. Froala operates as a WYSIWYG HTML rich text editor

Read More
28 Oct 2020

Trump Campaign Website Defaced by Cryptocurrency Scam

Hackers have taken over President Trump’s 2020 election campaign website, replacing the cover page with fraudulent claims that Trump was involved in the origin of COVID-19 as well as guilty of criminal collusion with foreign actors. Other parts of the site were replaced with cryptocurrency scam advertising. Journalist Gabriel Lorenzo

Read More