A successful attacker could use the SSRF vulnerability to collect metadata from WordPress sites hosted on an AWS server, and potentially log in to a cloud instance to run commands.
| | | LATEST SECURITY NEWS & COMMENTARY | | Google WordPress Plug-in Bug Allows AWS Metadata Theft A successful attacker could use the SSRF vulnerability to collect metadata from WordPress sites hosted on an AWS server, and potentially log in to a cloud instance to run commands. Inside the Next-Level Fraud Ring Scamming Billions Off Holiday Retailers "Largest attack of its kind": A potent Southeast Asian e-commerce fraud ring has declared war on US retailers, targeting billions in goods in just the past month and forcing mules into its scheme. Zerobot Adds Brute Force, DDoS to Its IoT Attack Arsenal Threat actors continue to evolve the malicious botnet, which has also added a list of new vulnerabilities it can use to target devices. Security on a Shoestring? Cloud, Consolidation Best Bets for Businesses With a recession potentially coming, some companies are cutting security teams. But moving more infrastructure to the cloud and reducing the number of vendors through consolidation may be the best ways to prepare. Threat Modeling in the Age of OpenAI's Chatbot New technical chatbot capabilities raise the promise that their help in threat modeling could free humans for more interesting work. Biden Signs Post-Quantum Cybersecurity Guidelines Into Law The new law holds the US Office of Budget and Management to a road map for transitioning federal systems to NIST-approved PQC. New Brand of Security Threats Surface in the Cloud Tech Insight report co-produced by Black Hat, Dark Reading, and Omdia examines how cloud security is evolving in a rapid race to beat threat actors to the (cloud) breach. 'Sextortion,' Business Disruption, and a Massive Attack: What Could Be in Store for 2023 Our growing interconnectedness poses almost as many challenges as it does benefits. MORE NEWS / MORE COMMENTARY | | |
|
Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| | To opt-out of any future Dark Reading Daily Newsletter emails, please respond here. | | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | | We take your privacy very seriously. Please review our Privacy Statement. |
|
| |
