According to W3Techs, WordPress powers 34% of all the websites on the Internet, including those without a content management system (CMS) or with a custom-coded CMS. Or to put it another way, WordPress powers over one-third of the web! And if you limit the data set to only websites with a known CMS, WordPress’ market share gets even more dominant. WordPress holds a 60% market share for content management systems on websites with a known CMS. (Kinsta.com)
That said crooks are hacking into insecure WordPress sites through a vulnerability in the theme plugin and interjecting malicious redirect scripts into the site. What happens when the script runs is an alert will pop up with a fake Flash update message. The user can click on Update Now or Later, either way, the redirect still occurs and the malicious payload is delivered.
The payload is what is known as a RAT, Remote Access Trojan which allows remote access to the compromised computer.
A second known way the RAT payload is delivered is if the Chrome Browser is being used to visit a compromised website, a message that the 'PT Sans' font wasn't found and to update the browser.
Be careful and vigilant, especially with the upcoming holiday season when cyber-crooks will be active trying to cash in on consumer holiday buying.
To read more click on the following link;
https://www.zdnet.com/article/this-fake-software-update-tries-to-download-malware-onto-your-pc-even-when-you-click-later/?ftag=TRE-03-10aaa6b&bhid=2219791
Two-factor authentication. What is it and how to deploy.
The single most important security precaution you can take with high-value online accounts is to enable a mobile device as a secondary identity factor. Which authenticator app should you choose? The correct answer might involve multiple apps.
Malware attacks on hospitals are rising fast, and the problem is about to get a lot worse
The healthcare industry stores some of the most sensitive personal information there can be about people: hackers know this and are looking to exploit what they view as an easy target.
Alongside names, addresses, dates of birth and other information that hackers can use to commit fraud and other cybercrime, the nature of health data means hospitals store extremely sensitive information about patients, something which attackers could exploit.
Coming in the next blog post, the best way to protect your credentials/online identity.
Two-factor authentication. What is it and how to deploy.
The single most important security precaution you can take with high-value online accounts is to enable a mobile device as a secondary identity factor. Which authenticator app should you choose? The correct answer might involve multiple apps.
don't miss this important info.
Driving Force Intel Gen 8 and 9 Workstations
No comments:
Post a Comment