Author: Security Inform


Critical WordPress plugin vulnerability allows spam content on your website

If you installed ‘Display Widgets’ plugin on your WordPress website, remove it immediately because the plugin includes malicious code to publish spam content on WP websites. Read more about the WordPress plugin vulnerability.   Security firm Wordfence researchers have discovered a serious vulnerability in popular WordPress plugin, called ‘Display Widgets’, that allows the author of the plugin to publish any content...

407 total views, no views today


Chimera ransomware encrypts files and publishes sensitive data on the internet

The message states in German: “You are victim of the Chimera malware. Your private files are encrypted and can not be restored without a special key file. Some applications may not function properly.  Please transfer Bitcoins to the following address to get your unique key file…”   A new type of ransomware named “Chimera” has been discovered which is targeting companies...

2,410 total views, no views today


Pirated copies of ‘Watch Dogs’ game contain Bitcoin mining malware

“Watch Dogs fans targeted for access to their juicy GPUs”   (The Register) – Tens of thousands of pirate gamers have been enslaved in a Bitcoin botnet after downloading a cracked copy of popular game Watch Dogs. A torrent of the infected title, which supposedly has had its copy-protection removed, had almost 40,000 active users (seeders and leechers) and was downloaded...

1,603 total views, no views today


Fake ‘Heartbleed removal tool’ spam campaign spreading malware

(Symantec Security Response) – At the beginning of April, a vulnerability in the OpenSSL cryptography library, also known as the Heartbleed bug, made headlines around the world. If you haven’t heard of the Heartbleed Bug, Symantec has published a security advisory and a blog detailing how the Heartbleed bug works. As with any major news, it is only a matter of...

1,427 total views, no views today


Better crafted and hard to detect phishing attack for stealing Google passwords

(Bitdefender / HotForSecurity) – Hackers grab Google account passwords in a new, better crafted phishing attack that is hard to catch with traditional heuristic detection. A particularity in how Google Chrome displays data: URIs makes Chrome users more vulnerable. The phishing attack also targets Mozilla Firefox users. With access to users’ Google accounts, hackers can buy apps on Google Play, hijack Google+...

1,196 total views, no views today