Critical zero-day vulnerability fixed in WordPress Easy WP SMTP plugin.
The popular Easy WP SMTP plugin, which as 300,000+ active installations, was prone to a critical zero-day vulnerability.
Author: Jerome Bruandet
Misuse of WordPress WP-CLI could leak user passwords.
WP-CLI is a command line interface for WordPress. It is a nice and very helpful tool if you want to manage a lot of WordPress installations from a Unix shell.
NinjaScanner v1.2 introduces the quarantine sandbox.
NinjaScanner v1.2 introduces a new and unique feature, the quarantine sandbox: When moving a file to the quarantine folder, NinjaScanner can use a testing environment (a.k.a.…
Impedance mismatch: a hacker’s best friend.
A security application, such as a Web Application Firewall or an Anti-Virus, can be vulnerable to impedance mismatch attacks if it interprets traffic and input differently…
Blocking a WordPress XML-RPC attack with the Linux kernel firewall.
One of our customers faced a large attack against his WordPress blog xmlrpc.php script. When I connected to his server, the CPU load was over 100.…