Cyber Security News April 2019

This posting is here to collect cyber security news in April 2019.

I post links to security vulnerability news to comments of this article.

If you are interested in cyber security trends, read my Cyber security trends 2019 posting.

You are also free to post related links.

402 Comments

  1. Tomi Engdahl says:

    Oops. 228K Danish Passports Have Swapped Fingerprint Data
    https://www.bleepingcomputer.com/news/security/oops-228k-danish-passports-have-swapped-fingerprint-data/

    In a big oops, over 200,000 Danish passports were printed with the users’ fingerprints mistakenly swapped between the left and right hand.

    Since October 2011, all new Danish passports contain chips that store biometric data such as the owner’s digital photo, fingerprints, and signatures.

    Reply
  2. Tomi Engdahl says:

    Exploits in the Wild for WordPress Social Warfare Plugin CVE-2019-9978
    https://unit42.paloaltonetworks.com/exploits-in-the-wild-for-wordpress-social-warfare-plugin-cve-2019-9978/

    On 21 March, researchers disclosed two vulnerabilities in Social Warfare, a very popular plugin in WordPress which adds social share buttons to a website or blog. One vulnerability is a Stored Cross-site Scripting Attack (XSS) vulnerability and the other is a remote code execution (RCE) vulnerability, both are tracked by CVE-2019-9978. Both vulnerabilities are present in versions 3.5.0-3.5.2 of Social Warfare: a fix was released on 21 March and is in version 3.5.3. Approximately 60,000 active installations were found at the time of writing

    Reply

Leave a Comment

Your email address will not be published. Required fields are marked *

*

*