Web Security Archives | CW Enterprises

Articles targeted at Web App Security, hacks, guides, how to’s and the latest vulnerabilities.

Exploits for Social Warfare WordPress Plugin Reach Critical Mass

23rd April 2019Tara Seals

More and more attacks taking advantage of a XSS and RCE bug in the popular plugin have cropped up in the wild. [...]

FBI: BEC Scam Losses Almost Double To Reach $1.2 Billion

23rd April 2019Lindsey O Donnell

Overall, in 2018 the FBI received more than 351k reported scams with losses exceeding $2.7 billion. Source: Threat Post – Web Security [...]

Microsoft’s Latest Patch Hoses Some Antivirus Software

19th April 2019Tom Spring

McAfee, Sophos and Avast are among the antivirus software suites impacted. Source: Threat Post – Web Security – Microsoft’s Latest Patch Hoses [...]

Shopify Flaw Exposed Thousands of Merchants’ Revenue, Traffic Numbers

18th April 2019Lindsey O Donnell

The flaw, which existed in a Shopify API endpoint, has been patched. Source: Threat Post – Web Security – Shopify Flaw Exposed [...]

Poll: Facebook Harvests Email Contacts for 1.5M Users – Is Enough, Enough?

18th April 2019Tara Seals

Take our short poll on how far Facebook can push its luck. Source: Threat Post – Web Security – Poll: Facebook Harvests [...]

Easter Attack Affects Half a Billion Apple iOS Users via Chrome Bug

18th April 2019Tara Seals

The U.S-focused eGobbler malvertising attacks are exploiting an unpatched Google Chrome bug. Source: Threat Post – Web Security – Easter Attack Affects [...]

ThreatList: Bad Bots Account for a Fifth of All Web Traffic, FinServ Hit the Worst

17th April 2019Tara Seals

The financial services industry sees nearly half of all website traffic coming from malicious bots. Source: Threat Post – Web Security – [...]

RatVermin Spyware Targets Ukraine Gov Agencies

16th April 2019Lindsey O Donnell

Researchers are pinning a recent phishing campaign against Ukraine government agencies on the Luhansk People’s Republic, a proto-state in eastern Ukraine which declared [...]

TicTocTrack Smartwatch Flaws Can Be Abused to Track Kids

15th April 2019Lindsey O Donnell

A popular Australian smartwatch’s tracking capabilities expose its user’s locations, personal data and more. Source: Threat Post – Web Security – TicTocTrack [...]

Authentication Bypass Bug Hits Top Enterprise VPNs

15th April 2019Tara Seals

Business users of Cisco, F5 Networks, Palo Alto Networks and Pulse Secure platforms are impacted, according the U.S. government. Source: Threat Post [...]