LastPass has released a fix last week. Vulnerability details are now public. Users advised to update. Password manager LastPass has released an update last week to fix a security bug that exposes credentials entered on a previously visited site. The bug was discovered last month by Tavis Ormandy, a security researcher with Project Zero, Google’s […]
On September 3, Multi-State Information Sharing and Analysis Center (MS-ISAC) has issued an alert related to multiple vulnerabilities that could allow for arbitrary code execution and a recommendation that all sites using PHP should update to the latest PHP version ASAP (full alert is available here). Read on for impacts and steps for Magento Commerce […]
WordPress version 5.2.3 has just appeared on the download pipe featuring half a dozen security fixes and software enhancements. It doesn’t look as though any of the flaws have been publicly disclosed or identified with CVEs, but admins who are confident about compatibility will still want to apply it. As usual, the dominant theme is […]
Broadband ISPs and the Government look set to clash with Mozilla after the internet technology developer announced that it would move forward with its earlier proposal to enable DNS-over-HTTPS (DoH) by default in their popular Firefox website browser, albeit with tweaks to respect ISP network-level internet filters. We’ve covered this quite a lot before (here […]
Huge Facebook leak exposes 400 MILLION users’ phone numbers in latest privacy lapse Phone numbers linked to more than 400 million Facebook accounts have been posted online in the latest security disaster for the firm. According to TechCrunch, 133 million US accounts, more than 50 million in Vietnam, and 18 million in Britain were among […]