New Hack Could Be Affecting Your Web Server

If you own or manage a web server, you need to know about a recent vulnerability identified by the Dutch security firm, Fox-IT.  This vulnerability involves embedding malicious software into add-ons for popular content management systems such as WordPress, Joomla, and Drupal. This exploit is referred to as a backdoor vulnerability, which is a method of obtaining access … Read more

The Top 49 Security Blogs – Not Named Securethoughts – To Read in 2015

As we move into 2015, cybersecurity will continue to be a pervasive and important topic.  Threats from malicious attacks, along with website and application vulnerabilities, continue to put our privacy and personal information at risk.  To make sure each of your stays up-to-date on everything related to security, Secure Thoughts presents our Top 100 Security … Read more

Unauthorized TinyURL URL Enumeration Vulnerability

TinyURL is a popular and convenient social media tool, which takes long URLs and shortens them.  This is especially useful with services such as Twitter, which only allows posts up to 140 characters. Although useful, it is important to exercise caution when using TinyURL.  Security flaws within your URL could compromise your security and privacy. … Read more

Exploiting IE8 UTF-7 XSS Vulnerability Using Local Redirection

As our other posts have shown, keeping your software up-to-date is vital, especially with respect to security.  Software updates often have some type of security component to patch a known vulnerability.  By way of example, consider cross-site scripting (XSS) vulnerability from previous versions of several popular web browsers. This XSS vulnerability allowed attackers to hijack … Read more