More than a week after we reported deceptive search engine ads being used in Bitcoin wallet attacks, fraudsters are still using Bing ads to trick Blockchain users into visiting phishing sites — but this time, the ads are using some crude social engineering ploys. Searching for “blockchain” on bing.com currently displays the following pair of phishing ads […]
Fraudsters are exploiting loopholes in the presentation of ads by major search engines in order to lure victims to phishing sites. Searching for “blockchain”, the name of a popular Bitcoin wallet provider, caused deceptive ads to be displayed at the top of search results pages from Google, Bing, Yahoo, and DuckDuckGo. In contrast to the […]
Fraudulent classified ads posted on eBay
have been exploiting an opportunity to establish convincing attacks against potential car buyers. Simply viewing one of the sneaky eBay ads causes the victim’s browser to instead request the same listing via an intermediate server, which subtly modifies the content of the page to the fraudster’s advantage.
SUMMARY cPanel, Inc. has released EasyApache 3.24.15 with FCGI version 2.3.9 and PHP versions 5.5.10 and 5.4.27. This release addresses the FCGI vulnerability CVE-2013-4365 with fixes to a possible heap buffer overwrite issue, and the PHP vulnerability CVE-2013-7345 with fixes to bugs in the fileinfo module. We encourage all FCGI …
WordPress 3.4 is ready for beta testers! As always, this is software still in development and we don’t recommend that you run it on a production site — set up a test site just to play with the new version. If you break it (find a bug), please report it, and if you’re a developer, try to […]
The following bugs have been fixed:
[-] Cannot access Plesk Panel installed on Virtuozzo
[-] Plesk allows to create few customers with same email.
[-] Cannot change contact info of customer with error “User with such e-mail address already exists in the system”
Plesk Panel 10.0.1 MU#7 for Linux and Windows – security fixes – is available since June 9, 2011 through the Autoinstaller
[-] phpMyAdmin XSS vulnerability http://www.securityfocus.com/bid/47945/info.
[-] SQL injection at subscription’s owner changing in Plesk Panel.
[-] Horde XSS injection.
[-] Multiple XSS vulnerabilities in Plesk Panel.
[-] sw-cp-server can be crashed by client certificate.
Plesk Panel 10.1.1 MU#15 for Linux and Windows – security fixes – is available since June 9, 2011 through the Autoinstaller
[-] phpMyAdmin XSS vulnerability http://www.securityfocus.com/bid/47945/info.
[-] SQL injection at subscription’s owner changing in Plesk Panel.
[-] Horde XSS injection.
[-] Multiple XSS vulnerabilities in Plesk Panel.
[-] sw-cp-server can be crashed by client certificate.
52 queries. 8.75 mb Memory usage. 0.230 seconds.