Tag: plugin

Zero‑day in popular WordPress plugin exploited to take over websites

June 4, 2021

Websites using Fancy Product Designer are susceptible to remote code execution attacks even if the plugin is deactivated. Cybercriminals have been actively exploiting a zero-day vulnerability in Fancy Product Designer, a WordPress plugin used by more than 17,000 websites, according to a blog post by Defiant, which makes Wordfence security plugins for the web publishing platform. Attackers … More Zero‑day in popular WordPress plugin exploited to take over websites

Exploit kits: What are they and what is an exploit blocker?

March 27, 2020

What are exploit kits? Unwary internet users may not realize that in the course of normal browsing they can be exposed to malicious exploit kits that lurk on some websites. Exploit kits consist of malicious code to exploit one or more potential vulnerabilities in common web browsing and document viewing software. More sophisticated exploit kits … More Exploit kits: What are they and what is an exploit blocker?

ESET discovers Attor, a spy platform with curious GSM fingerprinting

October 10, 2019

ESET researchers discover a previously unreported cyberespionage platform used in targeted attacks against diplomatic missions and governmental institutions, and privacy-concerned users. ESET researchers have discovered a new espionage platform with a complex architecture, a host of measures to make detection and analysis more difficult and two notable features. First, its GSM plugin uses the AT … More ESET discovers Attor, a spy platform with curious GSM fingerprinting

No-cost ESET plugins for MSPs streamline security via low-effort dashboard

September 27, 2019

Complexity, capacity and security can all be addressed by MSPs – let’s talk priorities and challenges. MSPs, while providing for the business needs of multiple sectors, must also balance efficient management of cybersecurity processes to protect their clients. Achieving this via improved access and management, as well as improvement in both infrastructure and process, is … More No-cost ESET plugins for MSPs streamline security via low-effort dashboard

Former employee blamed for hack of WordPress plugin maker

January 24, 2019

The plugin’s users are recommended to change their passwords on WPML’s website following havoc reportedly wrought by a disgruntled ex-employee. The company behind the widely-used WordPress plugin WPML has been through a tumultuous few days after many of its customers received an email this past weekend that purported to warn them about “a bunch of … More Former employee blamed for hack of WordPress plugin maker