IT Company Blog

Tag: Website Security

  • How SSL helps in SEO for higher website rankings?

    How SSL helps in SEO for higher website rankings?

    For your website visibility and ranking in Google’s search results, you must conduct a lot of SEO. We mean it. But what if there was a simple tip you could do to boost your SEO rankings? Not only that but how about increasing the security of your website? Which Google appreciates! Yes, with an SSL…

  • Hackers utilise Azure Serial Console to get unauthorised access

    Hackers utilise Azure Serial Console to get unauthorised access

    A cybergang is utilising phishing and SIM swapping attacks to compromise Microsoft Azure admin credentials and get access to VMs.   The attackers then utilise the Azure Serial Console to install remote management software and Azure Extensions for covert surveillance.     According to the online security website, the cybergang known as UNC3944 has been active…

  • WordPress plugin vulnerability affected more than 2 million sites

    WordPress plugin vulnerability affected more than 2 million sites

    Following a security issue, users of the Advanced Custom Fields WordPress plugins are being recommended to update to version 6.1.6. The security flaw, known as CVE-2023-30777 is reflected in cross-site scripting (XSS). Moreover, it may be exploited to insert arbitrary executable programmes into otherwise secure web pages. There are more than two million active installs…

  • WordPress Sites Infected with Balada Injector Malware Campaign

    WordPress Sites Infected with Balada Injector Malware Campaign

    Since 2017, it’s been reported that over a million WordPress websites have been infected by malware known as Balada Injector.   According to the cybersecurity website, various vulnerabilities in themes and plugins are abused in this comprehensive effort to compromise WordPress websites. Every few weeks, the attacks are known to occur in waves.   Ongoing campaign…

  • The Evolution of IcedID: From Banking Fraud to malware Delivery

    The Evolution of IcedID: From Banking Fraud to malware Delivery

    New versions of IcedID no longer possess the capability for unusual online banking fraud. It concentrates on spreading more malware on compromised systems.   According to the cybersecurity website, since late last year, three different hackers have used these new variants in seven operations. Moreover, all these operations have as their primary objective; the distribution of…

  • Google Cloud storage is not as secure as we believe

    Google Cloud storage is not as secure as we believe

    Google Cloud Logs are a detective’s best friend. Google Cloud may have some worrying security issues. It allows threat actors to steal data without being detected by the cloud storage platform. According to cybersecurity website experts, who discovered that Google Cloud Platform (GCP) logs are often used to identify assaults. They comprehend what threat actors have accomplished,…

  • Why are cybercriminals using more Domain Shadowing?

    Why are cybercriminals using more Domain Shadowing?

    There have been 12,197 cases reported for domain shadowing between April 2022 and June 2022. Domain Shadowing is a subdomain of DNS hijacking. In domain shadowing, the hijacker compromises the DNS of a legitimate domain to use in malicious activities but will never compromise the legitimate DNS that already exists.  The attacker uses these subdomains…

  • Dangerous Google Chrome extensions were installed on over a million devices

    Dangerous Google Chrome extensions were installed on over a million devices

    Chrome extensions pose as legitimate browser services. Researchers discovered a collection of malicious Google Chrome extensions aimed to track browsing activities on over 1.4 million devices. McAfee – a computer security company stated the objective of the scam is to change the victim’s browser cookies each time they visit an e-commerce website. This will earn…

  • Concerned about your passwords after LastPass was hacked?

    Concerned about your passwords after LastPass was hacked?

    The accounts of LastPass developers were hacked. LastPass is one of the most popular password managers in the world, with over 30 million users globally. The company has announced that the popular password management application has been hacked. LastPass issued an email to its subscribers describing what had transpired and assuring them that their passwords…

  • Apple claims Hackers may have taken advantage of their security gaps

    Apple claims Hackers may have taken advantage of their security gaps

    Apple has launched an update to address security weaknesses on its iPhone, iPad, and Mac devices that it claims hackers have actively exploited. According to the tech giant, the updated software provides important security upgrades and is recommended for all users. Many industry analysts believe that this security loophole might allow hackers to take entire…