CMS and IT - Information Management Today

A flaw in Concrete5 CMS could have allowed website takeover

Security Affairs

AUGUST 18, 2020

A remote code execution (RCE) vulnerability affecting the Concrete5 CMS exposed numerous servers to full takeover, experts warn. A recently addressed remote code execution (RCE) flaw in the Concrete5 CMS exposed numerous websites to attacks. EdgeScan experts also provided a list of recommendations to keep the CMS secure.

CMS

CMS Access IT Security

New Caesar Cipher Skimmer targets popular CMS used by e-stores

Security Affairs

JUNE 26, 2024

A new e-skimmer called Caesar Cipher Skimmer is used to compromise multiple CMS, including WordPress, Magento, and OpenCart. Sucuri researchers discovered a new e-skimmer , called Caesar Cipher Skimmer, that was used in recent weeks to target users of e-stores based on popular CMS, including WordPress, Magento, and OpenCart.

CMS

CMS Analytics Passwords IT

The team behind the Joomla CMS discloses a data breach

Security Affairs

JUNE 1, 2020

Maintainers at the Joomla open-source content management system (CMS) announced a security breach that took place last week. The post The team behind the Joomla CMS discloses a data breach appeared first on Security Affairs. The company did not reveal is third-parties have found and accessed to the S3 bucket. Pierluigi Paganini.

CMS

CMS Data breaches Passwords Encryption

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

LFI CVE-2018-16763 Fuel CMS 1.4.1 Gafgyt is a popular choice for launching large-scale DDoS attacks, it first appeared in the threat landscape in 2014. The botnet implements multiple obfuscation techniques to avoid detection and hides C2 on the Tor network. The Enemybot botnet employs several methods to spread and targets other IoT devices.

CMS

CMS IoT Security Passwords

Drupal developers fixed a code execution flaw in the popular CMS

Security Affairs

JULY 25, 2022

The post Drupal developers fixed a code execution flaw in the popular CMS appeared first on Security Affairs. Drupal development team released security updates to fix multiple issues, including a critical code execution flaw. This could allow bypassing the protections provided by Drupal core’s default .htaccess Pierluigi Paganini.

CMS

CMS Access Cybersecurity Security

Experts discovered a privilege escalation issue in popular Umbraco CMS

Security Affairs

APRIL 6, 2021

Experts discovered a vulnerability in the popular CMS Umbraco that could allow low privileged users to escalate privileges to “admin.” ” Security experts from Trustwave have discovered a privilege escalation vulnerability in the popular website CMS, Umbraco. “Umbraco version 8.9.0 also seen in 8.6.3)

CMS

CMS Authentication Access Libraries

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

MAY 19, 2022

You very likely will interact with a content management system (CMS) multiple times today. For instance, the The Last Watchdog article you are reading uses a CMS to store posts, display them in an attractive manner, and provide search capabilities. Security is essential for a CMS. Best security practices.

CMS

CMS Security Encryption Data breaches

Credit Card Skimmer campaign targets WordPress via database injection

Security Affairs

JANUARY 13, 2025

Stealthy credit card skimmer targets WordPress e-commerce sites, injecting malicious JavaScript into CMS database tables to evade detection. Sucuri researchers warn of a stealthy credit card skimmer campaign targeting WordPress e-commerce sites by injecting malicious JavaScript into CMS database tables. xyz” or “fqbe23[.]xyz”).

CMS

CMS Encryption IT Information Security

Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed

Security Affairs

JUNE 17, 2022

This allowed the attacker to intercept user credentials and session cookies from administrative access to the websites’ content management system (CMS).” China-linked threat actors exploited the zero-day flaw CVE-2022-1040 in Sophos Firewall weeks before it was fixed by the security vendor. and impacts Sophos Firewall versions 18.5

CMS

CMS IT Authentication Access

Drupal addressed XSS and information disclosure flaws

Security Affairs

SEPTEMBER 17, 2020

Drupal maintainers addressed several information disclosure and cross-site scripting (XSS) flaws in the popular content management system (CMS). Drupal maintainers addressed several information disclosure and cross-site scripting (XSS) vulnerabilities in the popular content management system (CMS). ” reads the advisory.

CMS

CMS Metadata Access Security

KashmirBlack, a new botnet in the threat landscape that rapidly grows

Security Affairs

OCTOBER 26, 2020

Security experts from Imperva have spotted a new sophisticated botnet, tracked as KashmirBlack is believed to have already infected hundreds of thousands of websites by exploiting vulnerabilities in their content management system (CMS) platforms. The second part of the report also includes Indicators of Compromise (IoCs) for this botnet.

CMS

CMS Mining Communications Security

Multiple XSS flaws in Joomla can lead to remote code execution

Security Affairs

FEBRUARY 22, 2024

Joomla maintainers have addressed multiple vulnerabilities in the popular content management system (CMS) that can lead to execute arbitrary code. The impact of these flaws can be widespread because roughly 2% of all websites use Joomla, millions of websites worldwide use this CMS. The maintainers of the Joomla!

CMS

CMS Access Cybersecurity Risk

HPE discloses critical zero-day in Systems Insight Manager

Security Affairs

DECEMBER 16, 2020

mxtool -r -f toolsmulti-cms-search.xml 1>nul 2>nul. mxtool -r -f toolsmulti-cms-search.xml 1>nul 2>nul. HPE has disclosed a zero-day vulnerability in the latest versions of its HPE Systems Insight Manager (SIM) software for both Windows and Linux. The vulnerability affects HPE Systems Insight Manager (SIM) 7.6.x.,

CMS

CMS Security IT Access

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Security Affairs

JANUARY 23, 2022

CVE Number CVE Title Required Action Due Date CVE-2021-32648 October CMS Improper Authentication 2/1/2022 CVE-2021-21315 System Information Library for node.js CVE Number CVE Title Required Action Due Date CVE-2021-32648 October CMS Improper Authentication 2/1/2022 CVE-2021-21315 System Information Library for node.js

CMS

CMS IT Authentication Libraries

Adobe revealed that the Magento Marketplace was hacked

Security Affairs

NOVEMBER 27, 2019

The Magento Marketplace is a website for buying and downloading themes and plugins for e-stores running the Magento CMS. Magento is the most popular content management solution (CMS) for building e-commerce website, Adobe acquired the company for $1.68 billion in 2018.

CMS

CMS Data breaches Passwords Access

Patch now your vBulletin install before hacker will target your forum

Security Affairs

MAY 12, 2020

Administrators of online discussion forums based on the popular vBulletin CMS urge to update their install to address a critical security vulnerability tracked as CVE-2020-12720. Maintainers of the vBulletin project have released an important fix to address a security vulnerability tracked as CVE-2020-12720. before 5.6.0pl1, and 5.6.1

CMS

CMS Security Access IT

Apple paid a $50,000 bounty to two bug bounty hunters for hacking its hosts

Security Affairs

JANUARY 18, 2021

While conducting reconnaissance and fingerprinting the experts found three Apple hosts running a content management system (CMS) backed by Lucee , which is a dynamic, Java-based, tag and scripting language used for rapid web application development. The three hosts are: [link] (Recent version) [link] (Older version) [link] (Older version).

IT

IT CMS Authentication Access

GoTrim botnet actively brute forces WordPress and OpenCart sites

Security Affairs

DECEMBER 14, 2022

“Although this malware is still a work in progress, the fact that it has a fully functional WordPress brute forcer combined with its anti-bot evasion techniques makes it a threat to watch for—especially with the immense popularity of the WordPress CMS, which powers millions of websites globally.” ” continues the report.

CMS

CMS Encryption Risk Passwords

Magento flaw exploited to deploy persistent backdoor hidden in XML

Security Affairs

APRIL 5, 2024

In this case, the command is sed, which adds a backdoor to the (automatically generated) CMS controller.” generated/code/Magento/Cms/Controller/Index/Index/Interceptor.php The described process allows attackers to establish persistent remote code execution via POST commands. The vulnerability CVE-2024-20720 (CVSS score of 9.1)

CMS

CMS Security IT Information Security

Drupal fixed a new flaw related PEAR Archive_Tar library

Security Affairs

JANUARY 22, 2021

and 7 of the popular CMS. The flaw could be exploited by attackers if the CMS is configured to allow for the upload and processing of.tar,tar.gz,bz2, The Drupal development team has released security updates to address the CVE-2020-36193 vulnerability in the PEAR Archive_Tar third-party library. ” reads the advisory. .

Libraries

Libraries CMS Security IT

Thousands of Adobe Commerce e-stores hacked by exploiting the CosmicSting bug

Security Affairs

OCTOBER 3, 2024

The typical attack strategy is to steal your secret crypt key from app/etc/env.php and use that to modify your CMS blocks via the Magento API. The flaw impacts Adobe Commerce versions 2.4.7, p8 and earlier. Adobe warned that it is aware that CVE-2024-34102 has been exploited in the wild in limited attacks targeting Adobe Commerce merchants.

CMS

CMS Passwords Cybersecurity IT

HHS OIG: Medicare Should Require Hospital Device Security

Data Breach Today

JUNE 30, 2021

CMS Says It's Considering New Cybersecurity Requirements The Centers for Medicare and Medicaid Services is considering new cybersecurity requirements for hospitals participating in Medicare after a watchdog agency recommended CMS should require the facilities to address the cybersecurity of their networked medical devices.

CMS

CMS Cybersecurity Security IT

CVE-2019-6340 Critical flaw in Drupal allows Remote Code Execution

Security Affairs

FEBRUARY 21, 2019

Security expert found a “highly critical” vulnerability (CVE-2019-6340) in the popular Drupal CMS that could be exploited for remote code execution. Drupal released security updates that addresses a “highly critical” vulnerability in the popular Drupal CMS, tracked as CVE-2019-6340, that could be exploited for remote code execution.

CMS

CMS Security IT

Drupal patched security vulnerabilities in Symfony, jQuery

Security Affairs

APRIL 18, 2019

The developers of the Symfony PHP web application framework released updates that patch five vulnerabilities, three affecting the Drupal CMS. The developers of the Symfony PHP web application framework addressed a total of five vulnerabilities, three of which impact the Drupal CMS. extend ( ) function.” for Drupal 8 and 1.4.4

CMS

CMS Security IT

Ghost Squad Hackers defaced a second European Space Agency (ESA) site in a week

Security Affairs

JULY 19, 2020

Their attempt to patch the vulnerability was a fail even after removing their CMS and adding a maintenance index we were still able to get access. ” According to the hackers, the ESA experts have yet to fix the problem, they only removed the installation of the CMS. ” the hackers told me. ” the hackers said.

CMS

CMS Military Access Government

Russian hackers defaced local British news sites

Security Affairs

MAY 13, 2024

Unlike other disinformation campaigns, GhostWriter doesn’t spread through social networks, instead, threat actors behind this campaign abused compromised content management systems (CMS) of news websites or spoofed email accounts to disseminate fake news. It is owned by the American mass media holding company Gannett.

CMS

CMS Military Archiving Security

WordPress version 5.0.1 addressed several vulnerabilities

Security Affairs

DECEMBER 14, 2018

of the popular CMS, that addresses several flaws. The Researcher Tim Coen discovered several cross-site scripting (XSS) vulnerabilities in the CMS. This week, the WordPress development team released on Thursday the version 5.0.1 This is no longer the case, and the content of uploaded files must now match their extension.

CMS

CMS Metadata Passwords Security

Drupal addresses critical code execution vulnerability

Security Affairs

JUNE 18, 2020

SecurityAffairs – hacking, CMS). Drupal released security updates to address multiple security vulnerabilities, including a “critical” flaw tracked as CVE-2020-13664 that could be exploited by an attacker to execute arbitrary PHP code. “Drupal 8 and 9 have a remote code execution vulnerability under certain circumstances.”

CMS

CMS Security Access IT

Segway e-store compromised in a Magecart attack to steal credit cards

Security Affairs

JANUARY 25, 2022

The store is running the Magento CMS, threat actors used to compromise them by exploiting vulnerabilities in vulnerable versions of the CMS itself or one of its plugins. Researchers noticed the Segway store was contacting a known skimmer domain (booctstrap[.]com) ” reads the analysis published by Malwarebytes.

CMS

CMS IT Security Data breaches

Hackers abused swap files in e-skimming attacks on Magento sites

Security Affairs

JULY 23, 2024

Experts also recommends of regularly updating your CMS and plugins to avoid vulnerabilities exploited by automated attack tools. The researchers discovered a suspicious script in the compromised website’s checkout page that had all the usual indicators of malware. The script included base64 encoded variables and hex encoded strings.

Cleanup

Cleanup CMS File names Analytics

Drupal addressed CVE-2020-13671 Remote Code Execution flaw

Security Affairs

NOVEMBER 19, 2020

In September, Drupal maintainers fixed several information disclosure and cross-site scripting (XSS) vulnerabilities in the popular content management system (CMS). Pierluigi Paganini. SecurityAffairs – hacking, Drupal). The post Drupal addressed CVE-2020-13671 Remote Code Execution flaw appeared first on Security Affairs.

CMS

CMS Libraries Security Information Security

Critical flaw in WPML WordPress plugin impacts 1M websites

Security Affairs

AUGUST 27, 2024

The WPML Multilingual CMS Plugin for WordPress is installed on over 1 million sites. A critical flaw in the WPML WordPress plugin, which is installed on 1 million websites, could allow potential compromise of affected sites. WPML makes it easy to build multilingual sites and run them. This issue is unlikely to occur in real-world scenarios.”

CMS

CMS Authentication Security IT

HHS Releases Final Data Sharing Rules

Data Breach Today

MARCH 9, 2020

ONC, CMS Rules Aim to Provide Patients with Secure Access to Health Data The Department of Health and Human Services Monday released its long-awaited interoperability and information blocking final rules.

CMS

CMS Access Security IT

Thousands of Magento stores hacked in a few days in largest-ever skimming campaign

Security Affairs

SEPTEMBER 14, 2020

Experts believe the crooks might be using a new exploit code for the popular CMS that was offered a few weeks ago on a hacking forum for $5,000 by a Russian seller that goes online with the moniker ‘z3r0day.’ Experts reported that threat actors compromised over 1,000 stores on Saturday, other 600 on Sunday, and over 200 on Monday.

CMS

CMS Cybersecurity Security IT

Drupal fixes 2 critical code execution issues flaws in Drupal 7, 8.5 and 8.6

Security Affairs

JANUARY 17, 2019

The development team marked.phar as a potentially dangerous extension, this means that.phar files uploaded to a website running on the popular CMS will be automatically converted to.txt to prevent malicious execution. The development team behind the Archive_Tar have patched flaw and released the update it in the core of the CMS.

CMS

CMS Libraries Security Access

Researcher discloses exploit code for a vBulletin zero-day

Security Affairs

AUGUST 11, 2020

A researcher published details and proof-of-concept exploit code for a zero-day RCE vulnerability in the popular forum CMS vBulletin. The CVE-2019-16759 flaw was publicly disclosed on September 24, 2019, the maintainer of the vBulletin CMS released the security patch on September, 25. ” reads a blog post published by Etemadieh.

CMS

CMS Security IT

WordPress Plugin abused to install e-skimmers in e-commerce sites

Security Affairs

MAY 28, 2024

“Here’s a simple guide to protect your online store: Keep your software patched : Regularly update your CMS, plugins, themes, and any third-party components to patch vulnerabilities. ” reads the analysis published by Sucuri. The malware has two main components. ” concludes the report.

CMS

CMS Passwords IT Security

Balada Injector continues to infect thousands of WordPress sites

Security Affairs

JANUARY 15, 2024

Doctor Web has discovered a malicious Linux program that hacks websites based on a WordPress CMS. The malicious code was first discovered in December 2022 by AV firm Doctor Web. It exploits 30 vulnerabilities in a number of plugins and themes for this platform. reads the report published by Dr Web. ” concludes the report.

CMS

CMS IT Information Security Security

Mozilla fixes critical flaw in Network Security Services (NSS) cryptography library

Security Affairs

DECEMBER 1, 2021

“Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS #7, or PKCS #12 are likely to be impacted. Mozilla fixed a critical memory corruption issue affecting its cross-platform Network Security Services (NSS) set of cryptography libraries. Well, it turns out the answer is memory corruption.”

Libraries

Libraries Security CMS Communications

Magecart skimmer scripts hosted on GitHub infected 200+ e-commerce sites

Security Affairs

APRIL 27, 2019

As usual let me suggest to keep your install up to date running the latest version of CMS and plugins. “It is critical for e-commerce site owners to keep their CMS and its plugins up-to-date, as well as using secure authentication methods. ” reads the analysis published by MalwareBytes. Data was exfiltrated to: jquerylol[.]ru

e-Discovery

e-Discovery CMS Risk Authentication

WordPress WP-VCD malware delivered via pirated Coronavirus plugins

Security Affairs

MARCH 26, 2020

In November 2017, researchers from Sucuri firm discovered a new strain of this malware that injected malicious code in the legitimate files of the two the default themes “twentyfifteen” and “twentysixteen”included in the WordPress CMS in 2015 and 2016. “ we found that all of these plugins contained a ‘class. plugin-modules.

CMS

CMS IT Security Information Security

Tupperware website has been compromised with a payment card skimmer

Security Affairs

MARCH 25, 2020

The experts from Malwarebytes speculate that the website was hacked because it was running an outdated version of Magento e-commerce CMS. “We do not know exactly how Tupperware got hacked, but a scan via Sucuri’s SiteCheck shows that they may be running an outdated version of the Magento Enterprise software.”

CMS

CMS Manufacturing Access IT

CISA adds Log4Shell Log4j flaw to the Known Exploited Vulnerabilities Catalog

Security Affairs

DECEMBER 13, 2021

“Fortinet is aware of an instance where this vulnerability was abused and recommends immediately validating your systems for indicators of compromise” Other flaws added to the catalog affects Fuel CMS, Pi-Hole AdminLTE, Realtek Jungle SDK, Sonatype Nexus, Linux Kernel, MongoDB, Apache Solr, Embedthis GoAhead, and Red Hat Jboss.

CMS

CMS Authentication Libraries Risk

A study on malicious plugins in WordPress Marketplaces

Security Affairs

AUGUST 30, 2022

The experts studied the evolution of CMS plugins in the production web servers dating back to 2012, to do this they developed an automated framework named YODA to detect malicious plugins. The number of malicious plugins on WordPress websites has increased over the years, and malicious activity reached a peak in March 2020.

CMS

CMS Paper Security Information Security

A flaw in Concrete5 CMS could have allowed website takeover

New Caesar Cipher Skimmer targets popular CMS used by e-stores

Webinars

Trending Sources

The team behind the Joomla CMS discloses a data breach

Webinars

EnemyBot malware adds new exploits to target CMS servers and Android devices

Drupal developers fixed a code execution flaw in the popular CMS

Experts discovered a privilege escalation issue in popular Umbraco CMS

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

Credit Card Skimmer campaign targets WordPress via database injection

Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed

Drupal addressed XSS and information disclosure flaws

KashmirBlack, a new botnet in the threat landscape that rapidly grows

Multiple XSS flaws in Joomla can lead to remote code execution

HPE discloses critical zero-day in Systems Insight Manager

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Adobe revealed that the Magento Marketplace was hacked

Patch now your vBulletin install before hacker will target your forum

Apple paid a $50,000 bounty to two bug bounty hunters for hacking its hosts

GoTrim botnet actively brute forces WordPress and OpenCart sites

Magento flaw exploited to deploy persistent backdoor hidden in XML

Drupal fixed a new flaw related PEAR Archive_Tar library

Thousands of Adobe Commerce e-stores hacked by exploiting the CosmicSting bug

HHS OIG: Medicare Should Require Hospital Device Security

CVE-2019-6340 Critical flaw in Drupal allows Remote Code Execution

Drupal patched security vulnerabilities in Symfony, jQuery

Ghost Squad Hackers defaced a second European Space Agency (ESA) site in a week

Russian hackers defaced local British news sites

WordPress version 5.0.1 addressed several vulnerabilities

Drupal addresses critical code execution vulnerability

Segway e-store compromised in a Magecart attack to steal credit cards

Hackers abused swap files in e-skimming attacks on Magento sites

Drupal addressed CVE-2020-13671 Remote Code Execution flaw

Critical flaw in WPML WordPress plugin impacts 1M websites

HHS Releases Final Data Sharing Rules

Thousands of Magento stores hacked in a few days in largest-ever skimming campaign

Drupal fixes 2 critical code execution issues flaws in Drupal 7, 8.5 and 8.6

Researcher discloses exploit code for a vBulletin zero-day

WordPress Plugin abused to install e-skimmers in e-commerce sites

Balada Injector continues to infect thousands of WordPress sites

Mozilla fixes critical flaw in Network Security Services (NSS) cryptography library

Magecart skimmer scripts hosted on GitHub infected 200+ e-commerce sites

WordPress WP-VCD malware delivered via pirated Coronavirus plugins

Tupperware website has been compromised with a payment card skimmer

CISA adds Log4Shell Log4j flaw to the Known Exploited Vulnerabilities Catalog

A study on malicious plugins in WordPress Marketplaces

Stay Connected