Hackers Infect Magento Shops With Malware Through Extension Flaw
|
|
Anyone who uses the popular Cisco WebEx extension for Chrome should update to the latest version pronto. Google security researcher Tavis Ormandy recently discovered a serious vulnerability in the Chrome extension that leaves PCs wide open to attack.
In older versions of the extension (before version 1.0.3) malicious actors could add a “magic string” to a web address or file hosted on a website. The magic string was designed to remotely activate the WebEx browser extension. Once the extension was activated the bad guys could execute malicious code on the target machine.
To read this article in full or to leave a comment, please click here
Adobe is no stranger to finding itself in the security headlines for all the wrong reasons, and it seems that things may not be changing as we enter 2017.
Read more in my article on the Tripwire State of Security blog.
Hackers have tried deleting Trump’s Wikipedia page and knocking his website offline. Now there’s a much simpler, and perfectly legal, way to erase Trump from the internet.
Naked Security – Sophos