Security Leftovers
-
WordPress 6.0.3 Security Release - WordPress News
WordPress 6.0.3 is now available!
This release features several security fixes. Because this is a security release, it is recommended that you update your sites immediately. All versions since WordPress 3.7 have also been updated.
WordPress 6.0.3 is a short-cycle release. The next major release will be version 6.1 planned for November 1, 2022.
If you have sites that support automatic background updates, the update process will begin automatically.
-
Attackers stay a step ahead of Microsoft in macro attacks
Microsoft's decision to block macros originating from the Internet by default has led to threat actors resorting to disk image and archive-based attacks, the global security firm Sophos claims.
In a statement, the company said that there had been a prediction that this scenario would play out and it had now confirmed that this was indeed the case.
Between April and September this year, Sophos said it had detected a big fall in DOC, DOCM, XLS and XLSM files, all popular Word formats for transmitting malicious macros.
-
New 'Alchimist' Attack Framework Targets Windows, Linux, macOS [Ed: But how does this RAT get installed in the first place?]
Cisco’s Talos security researchers warn of a newly identified attack framework and its associated remote access trojan (RAT) targeting Windows, Linux, and macOS systems.
-
Malware - Covid Vaccination Supplier Declaration, (Sat, Oct 15th)
This week's email is all about Covid for all suppliers to declare their vaccination status, but the date is almost 1 year old.