CRN

Researchers' Web Certificate Hack Highlights Big Internet Flaw

During the 25th annual Chaos Communication Congress held in Berlin, cryptographers from the U.S., Netherlands and Switzerland demonstrated a way to impersonate the digital credentials of RapidSSL, a ...

How Do Phishing Websites Evolve To Outsmart Users In 2026?

Phishing websites continue to evolve, growing smarter, faster, and more convincing with the help of AI and advanced ...
Bleeping Computer

WooCommerce admins targeted by fake security patches that hijack sites

A large-scale phishing campaign targets WooCommerce users with a fake security alert urging them to download a "critical patch" that adds a Wordpress backdoor to the site. Recipients that take the ...
Bleeping Computer

Security plugin flaw in millions of WordPress sites gives admin access

A critical authentication bypass vulnerability has been discovered impacting the WordPress plugin 'Really Simple Security' (formerly 'Really Simple SSL'), including both free and Pro versions. Really ...
Computerworld

AVG notes rise in number of malicious Web sites

Web sites rigged with malicious code are becoming more numerous by the day, but the time those sites are online is declining, according to new research from security vendor AVG Technologies. AVG is ...
Searchenginejournal.com

WordPress Security Plugin Vulnerability Endangers 4 Million+ Sites

A critical vulnerability was discovered in a popular WordPress security plugin with over 4 million installations. The flaw allows attackers to log in as any user, including administrators, and gain ...
Computerworld

Security Web Resources

The SANS Institute at sans.org is an excellent starting point for all sorts of information about security. In particular, SANS has two mailing lists that are essential to any system administrator’s ...