A widespread exploitation campaign is targeting WordPress websites with GutenKit and Hunk Companion plugins vulnerable to critical-severity, old security issues that can be used to achieve remote code execution (RCE). …
Category:
Cyber Security
- Cyber Security
Self-Spreading ‘GlassWorm’ Infects VS Code Extensions in Widespread Supply Chain Attack
by Wire Techby Wire TechSelf-Spreading 'GlassWorm' Infects VS Code Extensions in Widespread Supply Chain Attack Cybersecurity researchers have discovered a self-propagating worm that spreads via Visual Studio Code (VS Code) extensions on the Open …
- Cyber SecurityTechnology
Critical WSUS flaw in Windows Server now exploited in attacks
by Wire Techby Wire TechAttackers are now exploiting a critical-severity Windows Server Update Service (WSUS) vulnerability, which already has publicly available proof-of-concept exploit code. Tracked as CVE-2025-59287, this remote code execution (RCE) flaw affects …
- Cyber SecurityTechnology
Amazon: This week’s AWS outage caused by major DNS failure
by Wire Techby Wire TechAmazon says a major DNS failure was behind a massive AWS (Amazon Web Services) outage that took down many websites and online services on Monday. As BleepinComputer reported earlier this …
- Cyber SecurityTechnology
Fake LastPass death claims used to breach password vaults
by Wire Techby Wire TechLastPass is warning customers of a phishing campaign sending emails with an access request to the password vault as part of a legacy inheritance process. The activity started in mid-October, …
- Cyber SecurityTechnology
How to reduce costs with self-service password resets
by Wire Techby Wire TechWe all need to reset our passwords occasionally, whether it’s due to a simple memory lapse or wider security concerns. However, the process can rack up surprising expenses for organizations. …
- Cyber SecurityTechnology
Mozilla: New Firefox extensions must disclose data collection practices
by Wire Techby Wire TechStarting next month, Mozilla will require Firefox extension developers to disclose whether their add-ons collect or share user data with third parties. The devs will be required to disclose any …
- Cyber SecurityTechnology
Windows Server emergency patches fix WSUS bug with PoC exploit
by Wire Techby Wire TechMicrosoft has released out-of-band (OOB) security updates to patch a critical-severity Windows Server Update Service (WSUS) vulnerability with publicly available proof-of-concept exploit code. WSUS is a Microsoft product that enables …
- Cyber SecurityTechnology
Hackers earn $1,024,750 for 73 zero-days at Pwn2Own Ireland
by Wire Techby Wire TechThe Pwn2Own Ireland 2025 hacking competition has ended with security researchers collecting $1,024,750 in cash awards after exploiting 73 zero-day vulnerabilities. At Pwn2Own Ireland 2025, competitors targeted products in eight …

