If you’re a WordPress admin using a plug-in called Rich Reviews, you’ll want to uninstall it. Now.
Monthly Archives: September 2019
Russian pleads guilty in massive JPMorgan hacking scheme
Andrei Tyurin is the first to be convicted in one of the largest thefts of customer data from a single US financial institution in history.
Update ColdFusion now! Emergency patch for critical flaws
Adobe has rushed out fixes for three vulnerabilities in its ColdFusion web development platform, two of which have been given the top billing of ‘critical’.
Vimeo sued for storing faceprints of people without their say-so
The suit was filed under BIPA, the Illinois law that requires written consent to grab people’s faceprints – the same law Facebook’s battling.
Microsoft rushes out fix for Internet Explorer zero-day
Microsoft has rushed to patch two flaws affecting IE versions 9 to 11, one of which the company says is being exploited in real attacks.
Google wins landmark case: Right to be forgotten only applies in EU
Yes, people have the right to be forgotten, but only if they’re European, the top EU court ruled on Tuesday.
Patch released for Windows-pwning VPN bug
VPN vendor Forcepoint has patched a security flaw that could have given attackers unfettered access to its users’ Windows computers.
Twitter’s new policy bans financial scams
“Oh no! However shall I give away Bitcoin to all my followers?” sobbed a bunch of crooks.
YouTube ‘influencers’ get 2FA tokens phished
100K or so creators in the YouTube car community were targeted by a phishing campaign that captured 2FA codes.
Facebook has booted tens of thousands of data-grabbing apps
400 developers have been naughty with user data, noncompliant with policy, and/or have ignored Facebook’s audit, it says.