Plug-in Vulnerability - Security Intelligence

Website administrators collaborating in a modern office: WordPress exploit

news

WordPress Exploit in GDPR Plugin Puts 100,000 Websites at Risk

Researchers discovered a WordPress Exploit in a plugin designed to help site owners comply with the GDPR that enables attackers to take control of admin accounts.

November 20, 2018 | By Shane Schick

news

Display Widgets Plug-In Conducted Malware Attack Across 200,000 WordPress Sites

Approximately 200,000 websites running WordPress have been affected by a malware attack that used the Display Widgets plug-in to collect IP addresses.

September 15, 2017 | By Shane Schick

news

A cursor hovering over a URL address bar.

news

Google Adds Verification Screens for Plugins Following Phishing Attacks

Google is rolling out a number of protections to combat phishing attacks through plug-ins. These verification steps will help users practice due diligence.

July 20, 2017 | By Shane Schick

news

Problems related to a Unity Web plug-in are putting the information of thousands of online gamers at risk. This isn't the first time a plug-in was linked to a significant vulnerability, underscoring the need for comprehensive cybersecurity across apps.

news

Game Over? Plug-In Flaw Targets Gamer Data

A flaw in the Unity Web Player plug-in puts gamer data at risk, but this is just the tip of the iceberg. How do companies defend against plug-in problems?

June 9, 2015 | By Douglas Bonderud

news

Fraudsters Abuse Smartphone Google Calendar Feature to Push Through Scam Offers

Latest Mirai Malware Variant Contains 18 Exploits, Focuses on Embedded IoT Devices

Extortion Scam Threatens Website Owners With Reputational Damage

Attack Campaign Exploits CVE-2019-2725, Abuses Certificate Files to Deliver Monero Miner

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

One Big Lesson From the Cyber Range to Help Solve Confirmation Bias

Observations of ITG07 Cyber Operations

Getting Quantum Ready and What This Means for Cryptography

HawkEye Malware Operators Renew Attacks on Business Users

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Podcast: Travel Security: Why Data Safety Doesn’t Get a Day Off

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Webinar: Under the Radar: IBM QRadar Demo Series

Webinar: Appliance Networking Topics

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Tag: Plug-in Vulnerability

WordPress Exploit in GDPR Plugin Puts 100,000 Websites at Risk

Display Widgets Plug-In Conducted Malware Attack Across 200,000 WordPress Sites

Google Adds Verification Screens for Plugins Following Phishing Attacks

Game Over? Plug-In Flaw Targets Gamer Data