Posts Tagged ‘exec’

WordPress Plugin Social Media Widget Hiding Spam – Remove it now

Apr

2013

If you are using the Social Media Widget plugin (social-media-widget), make sure to remove it immediately from your website. We discovered it is being used to inject spam into websites and it has also been removed from the WordPress Plugin repository.This is a very popular plugin with more than 900,000 downloads. It has the potential […]

Category Security Written by Sucuri Blog 0 Comments

Unplugging PlugX Capabilities

Sep

2012

In our previous post, we reported about new breed of Remote Access Tool (RAT) called PlugX, which was used in targeted attacks using Poison Ivy. At first glance, this RAT appears to be a simple tool with limited remote access capabilities. However, further analysis of PlugX reveals that it might be keeping more tricks up […]

Category General Written by TrendLabs 0 Comments

New Java Zero-Day Vulnerability (CVE-2012-4681)

Aug

2012

Yesterday, FireEye documented a Java zero-day vulnerability (CVE-2012-4681) in the wild that is thought to have been used initially in targeted attacks. Symantec is aware that attackers have been using this zero-day vulnerability for at least five days, since August 22. We have located two compromised websites serving up the malware: ok.XXXX.net/meeting/applet.jar 62.152.104.XXX/public/meeting/applet.jar One sample […]

Category General Written by Symantec Security Response Blog 0 Comments

The Latest in IT Security

Posts Tagged ‘exec’

WordPress Plugin Social Media Widget Hiding Spam – Remove it now

Unplugging PlugX Capabilities

New Java Zero-Day Vulnerability (CVE-2012-4681)

Categories

Featured

Archives

Latest Comments

About Us

Contact Us