Yet Another Yahoo! Security Issue

The Yahoo! logo that was introduced in 2013 and features dual-tone purple/violet thin-walled lettering.

Yahoo! has fixed a major security flaw. This one was with their Yahoo! Mail email service that allowed an attacker to embed JavaScript in an email and have it execute. This would allow an attacker to gain access to all of a person’s email and Yahoo! account just by them opening an infected email. How was… Continue reading Yet Another Yahoo! Security Issue

Chrome Security Update: 45.0.2454.101

Google Chrome Browser Logo

Google has released a security update for it’s Chrome web browser. The new version, 45.0.2454.101, includes fixes for a reported cross-origin bypass that affects both the document object model (DOM) parser as well as the V8 JavaScript/ECMAScript engine. It is recommended that you update your browser to this version to prevent possible exploits. You can do so… Continue reading Chrome Security Update: 45.0.2454.101

Firefox: Stolen and Fixed

Mozilla Firefox Logo

Mozilla, an open-source software community run by the non-profit organization, Mozilla Corporation, and developers of the Firefox web browser, has announced it’s bug tracking software, Bugzilla, was hacked. The organization’s blog post states that the account that was compromised had access to privately-listed bugs representing zero-day security flaws in the browser. However, if you keep your browser… Continue reading Firefox: Stolen and Fixed

WordPress Security Release 4.2.4

The WordPress Logo

WordPress has released version 4.2.4. This security release fixes 3 cross-site-scripting (XSS) vulnerabilities and a possible SQL injection exploit. In addition the update also fixes a few general bugs in the software: A fix for characters not being saved correctly when a non-standard database collation is used A fix for the core not type-checking directory listings… Continue reading WordPress Security Release 4.2.4