European internet users can no longer access Meta’s Twitter clone Threads through a VPN. While Threads is not available in the EU, bypassing this restriction using a VPN was possible. However, Meta has now blocked access for European VPN users as well.
Security News
Read about the latest security news. News about computer security malware, and other threats to your computer.
Critical Vulnerability in WordPress Plugin Puts Thousands of Websites at Risk
Thousands of WordPress sites are vulnerable to takeover through a critical flaw in a widely used user registration plugin. Although the developer has released an update, most websites have not yet installed it. The vulnerability resides in the User Registration plugin, which allows WordPress sites to customize user registration pages and create user profile pages. Over 60,000 WordPress sites rely on this plugin.
Apple Reissues Security Updates for Actively Exploited Zero-Day Flaw in iOS and macOS
Apple has reissued security updates for an actively exploited zero-day vulnerability in iOS and macOS due to issues encountered with the initial release. Earlier this week, the tech company issued a Rapid Security Response to address the actively targeted flaw in WebKit, the browser engine developed by Apple. All browsers on iOS and iPadOS are required to utilize WebKit.
VMware Issues Warning About Exploit for Critical Vulnerability in Aria Operations for Logs
VMware has issued a cautionary notice to organizations regarding the discovery of an exploit for a critical vulnerability (CVE-2023-20864) in VMware Aria Operations for Logs, a log analysis tool previously known as vRealize Log Insight. Just last month, VMware reported actively exploiting another security flaw in the software. The appearance of the exploit code has now increased the likelihood of abuse of CVE-2023-20864.
Apple introduces image monitoring option for chat apps in iOS 17
Apple is set to introduce a new option in the latest iOS, macOS, and iPadOS versions that allows users to scan images in chat apps.
Nickelodeon Launches Investigation into Possible Leak of Production Material
The popular television network Nickelodeon is investigating a potential leak of its production material. Reports have emerged on platforms such as Twitter, claiming that a substantial amount of Nickelodeon’s videos, audio files, scripts, and graphics, totaling five hundred gigabytes, have been leaked.
Progress Warns Customers of Critical Vulnerability in MOVEit Transfer
Software developer Progress has warned its customers about a new critical vulnerability in MOVEit Transfer, which could lead to the theft of databases containing sensitive information.
Smartphone Users Warned About Commercial Spyware Threats
According to Cisco, the security measures implemented by Android and iPhone devices are generally sufficient for most users. However, commercial spyware vendors have repeatedly demonstrated the ease with which targets can be compromised.
Critical Vulnerability “TootRoot” Exposes Mastodon Servers to Takeover
A critical vulnerability named “TootRoot” has been discovered in Mastodon servers, allowing attackers to gain control over the servers and launch attacks against platform users.
Google Addresses Actively Exploited Zero-Day Vulnerabilities in July Android Update
During the July patch round, Google swiftly addressed three zero-day vulnerabilities actively exploited in the Android operating system.