Tag: Hacks | Page 46

Joomla bug puts millions of websites at risk of remote takeover hacks

October 25, 2015/in Internet Security

Enlarge / Here’s the control panel hackers can access by exploiting a just-patched Joomla vulnerability. (credit: Spiderlabs)

Millions of websites used in e-commerce and other sensitive industries are vulnerable to remote take-over hacks made possible by a critical vulnerability that has affected the Joomla content management system for almost two years.

The SQL-injection vulnerability was patched by Joomla on Thursday with the release of version 3.4.5. The vulnerability, which allows attackers to execute malicious code on servers running Joomla, was first introduced in version 3.2 released in early November 2013. Joomla is used by an estimated 2.8 million websites.

“Because the vulnerability is found in a core module that doesn’t require any extensions, all websites that use Joomla versions 3.2 and above are vulnerable,” Asaf Orpani, a researcher inside Trustwave’s Spiderlabs, wrote in a blog post. The vulnerability, and two closely related security flaws, have been cataloged as CVE-2015-7297, CVE-2015-7857, and CVE-2015-7858.

Read 4 remaining paragraphs | Comments

Ars Technica » Technology Lab

US proposal aims to regulate car privacy, make hacks illegal

October 16, 2015/in Computer Security

A subcommittee of the U.S. House of Representatives has proposed requiring vehicle manufacturers to state their privacy policies, besides providing for civil penalties of up to US$ 100,000 for the hacking of vehicles.

The lawmakers have also proposed that the National Highway Traffic Safety Administration set up an Automotive Cybersecurity Advisory Council to develop cybersecurity best-practices for manufacturers of cars sold in the U.S.

The move comes in the wake of the increasing automation of cars, which has raised privacy concerns, and the high-profile hack of a Jeep Cherokee.

The House Energy and Commerce Subcommittee on Commerce, Manufacturing, and Trade has released the staff draft ahead of a hearing next week on “Examining Ways to Improve Vehicle and Roadway Safety.”

To read this article in full or to leave a comment, please click here

Network World Security

Despite hacks, study finds mobile security is still terrible – VatorNews

September 15, 2015/in Mobile Security

CSO Online

Despite hacks, study finds mobile security is still terrible
VatorNews
There have been so many big cyber security hack happening over the last few years, from Target to Sony Pictures to Ashley Madison, to name just a few, you would think that security would be on everyone's mind now. Sadly that is simply not the case …
Travel apps riddled with security flawsCSO Online
Top 10 most popular Android and iOS travel apps contain critical security flawsNetwork World
Bluebox Security Reveals Inadequate Security in Today's Most Popular Travel AppsDigital Journal

all 8 news articles »

“mobile security” – read more

Hillary Clinton: China hacks ‘everything that doesn’t move’ in the US

July 6, 2015/in Internet Security

In the wake of the OPM breach, Hillary Clinton attempts to show presidential credentials by going on the offensive against Chinese hackers.
Naked Security – Sophos

Tag Archive for: Hacks