Bug in WordPress Stripe payment plugin exposes customer order information

Unauthenticated users can access customer order details due to a bug in the WordPress Stripe payment plugin A vulnerability has been discovered in the WooCommerce Stripe Gateway plugin for WordPress, which enables unauthenticated users to view order details from the plugin. This popular payment gateway, with 900,000 active installations, allows WordPress e-commerce websites to accept […]

Enhanced Security Measures Introduced for Google Chrome Password Manager to Protect Your Credentials

Google Chrome is rolling out new security features for its integrated Password Manager, providing users with improved password management capabilities and increased protection against account hijacking attempts. Google has recently unveiled five new features that reinforce the security of data stored in its Password Manager, fortifying user protection against potential risks. The first addition is […]

Safe Security Introduces SafeGPT: AI-Driven Cyber Risk Cloud Platform

Safe Security has launched a groundbreaking Cyber Risk Cloud of Clouds platform, featuring its AI-driven SafeGPT, aimed at predicting and preventing cyber breaches. Unlike traditional reactive approaches, Safe’s software-as-a-service (SaaS) platform provides organizations with a comprehensive view of enterprise security risk by consolidating data from various sources, such as Crowdstrike, Wiz, AWS, Azure, Google Cloud […]

Exploring Popular Cloud Systems: Revolutionizing the Digital Landscape

Introduction: Cloud computing has become an integral part of modern technology, revolutionizing the way we store, access, and process data. With its immense scalability, flexibility, and cost-efficiency, cloud systems have gained widespread popularity across various industries and consumer markets. In this article, we will delve into the world of popular cloud systems, providing an overview […]

Hackers Target Reddit, Demand $4.5 Million and API Modifications Threatening to Release 80GB of Data

In a recent disclosure, Reddit confirmed falling victim to a targeted phishing scheme in February. The attack resulted in the exposure of internal documents, dashboards, code, contracts, and certain personal information of advertisers, as well as past and present employees. Fortunately, none of the compromised data has been made public so far. However, this may […]

OpenAI CEO Encouraged by Discussions with Global Leaders on Controlling Risks Associated with AI

Sam Altman, the CEO of OpenAI, expressed optimism on Monday regarding the willingness of world leaders to address the potential risks associated with artificial intelligence (AI) technology being developed by his company and others. As part of his ongoing world tour, Altman visited Tel Aviv, a major tech hub, following visits to several European capitals. […]

Government and Military Organizations Persistently Targeted by Dark Pink Hackers

Dark Pink APT hacking group remains highly active, targeting government, military, and education organizations in Indonesia, Brunei, and Vietnam. Their recent attacks show a revamped chain, new persistence mechanisms, and updated data exfiltration tools. Dark Pink splits functionalities and loads implants from memory to evade detection. They utilize spear-phishing emails, DLL side-loading, and private GitHub […]