When you next Tweet, think about the information you’re giving away. A new tool has been developed that will gather geolocation related information from your Tweet and image hosting services, pin pointing where you were and presenting the information via … Continue reading →

The idea of willingly inviting hackers to break into your website or server may seem odd, but if the intention of the hacker are good (i.e. they don’t intend to use what they find to exploit your business) it can … Continue reading →

Application : Concrete 5 Versions Affected: < 5.4 Exploit : Multiple SQL Injections and XSS Threat Level: Potentially high Fix: Update not available Credit: Ryan Dewhurst External Website: http://www.concrete5.org What does it mean, do I have to do anything, if … Continue reading →

Application : WordPress Adrotate Plugin Versions Affected: 3.6.5 Exploit : SQL Injection Threat Level: Low Fix: Update Plugin to 3.6.6 Credit: Miroslav Stamper External Website: http://adrotateplugin.com/page/updates.php What does it mean, do I have to do anything, if so what? Adrotate … Continue reading →

I’ve been asked to write an article for a popular website in relation to hacking and what the most common forms of hacking are. So, I’ve put together a brief blog about it and will link to the full article … Continue reading →

Application : Mambo CMS Versions Affected: 4.6.5 and Lower Exploit : SQL Injection Easy of use: Moderate Threat Level : Low Fix: Use another CMS in active development ZeroDay : No Credit: Aung Khant, http://yehg.net, YGN Ethical Hacker Group, Myanmar … Continue reading →

Application : WordPress TimThumb (Theme) Plugin Versions Affected: 1.* – 1.32 (Only version 1.19 and 1.32 were tested.) Exploit : Remote Code Execution Easy of use : Moderate Threat Level: High Fix: Update to latest ZeroDay : No Credit: Mark … Continue reading →