Aggregator

A vulnerability classified as problematic has been found in ConvertKit Plugin up to 2.2.0 on WordPress. This affects an unknown part of the component Attribute Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2023-2337. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in 10Web SEO Plugin up to 1.2.6 on WordPress. Affected is an unknown function of the component Setting Handler. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2023-2224. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Quiz Maker Plugin 6.2.0.9/6.3.9.5 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Attribute Handler. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2023-2571. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Gitpod 0.6.0/2022.11.2.16 and classified as problematic. Affected by this issue is some unknown functionality of the component Protocol Handler. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2023-32766. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Survey Maker Plugin up to 3.4.6 on WordPress. It has been classified as problematic. This affects an unknown part of the component Attribute Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2023-2572. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Alleged Sale of Data from an Unknown Cosmetics Store in Poland

Author/Presenter: Ezz Tahoun

Our sincere appreciation to BSidesLV, and the Presenters/Authors for publishing their erudite Security BSidesLV24 content. Originating from the conference’s events located at the Tuscany Suites & Casino; and via the organizations YouTube channel.

Permalink

The post BSidesLV24 – Ground Truth – ZERO-RULES Alert Contextualizer & Correlator appeared first on Security Boulevard.

New research demonstrates cyberattacks on the application layer often evade the most common tools, Endpoint Detection and Response (EDR) and web application firewalls (WAFs). Contrast Labs spent several weeks testing several attack methods to determine whether WAFs or EDR solutions stop and/or catch most damaging software attacks. 

The post ADR vs EDR and WAF | Application Security Tool Comparison | Contrast Security appeared first on Security Boulevard.

Alleged Sale of Data of Cardinal Operations

Apr 25, 2025 - Alan Fagan - Washington, D.C. — 25th April 2025 — FireTail, the leading AI & API security platform, has released its annual report, The State of AI & API Security 2025, revealing a critical blind spot in the way organizations are securing their AI investments. Despite record-breaking AI adoption, the report warns that most enterprises are overlooking the most exposed part of the AI stack: the API layer.
“APIs are the foundation of AI applications, and attackers know it,” said Jeremy Snyder, Co-founder and CEO at FireTail. “If you don’t secure your APIs, you’re not securing your AI. It’s that simple.”
The report is based on research and analysis from FireTail’s API Breach Tracker, its AI Incident Tracker, telemetry from production environments, and detailed reviews of major AI-related security incidents. It provides concrete evidence that APIs are not just enabling AI, but exposing it.
Key Insights from the Report
In 2024, FireTail tracked 26 major API security incidents, an increase from 22 in the previous year. It showed that attackers continue to exploit long-standing vulnerabilities such as authorization flaws, weak authentication, and insufficient input validation. Since 2017, more than 1.6 billion records have been exposed via API-related incidents.
The report also examines high-profile cases including the Irish Government’s vaccination portal, OpenAI’s web crawler, and Meta’s LLaMA framework.
“We’re already seeing the first wave of large-scale AI breaches,” Snyder said. “And it’s clear that organizations are rushing to adopt AI without proper security oversight.”
A Growing Attack Surface and A Lack of Visibility
Research shows that 97% of organizations believe AI introduces unique security challenges, yet nearly 60% say they lack visibility into the APIs powering their AI systems. This gap is creating opportunities for attackers to exploit shadow APIs, bypass controls, and launch techniques like prompt injection and model poisoning.
The report also highlights the regulatory shift taking place. The FCC’s $16 million enforcement action against TracFone over API vulnerabilities shows that regulators now view API security failures as compliance violations rather in addition to being technical and security oversights.
Frameworks like the CIS API Security Guide, OWASP LLM Top 10, and ISO 42001 are beginning to provide much-needed structure. However, FireTail argues that these must be paired with proactive discovery, posture management, and runtime protection to be truly effective.
A Call for API-First Security
The State of AI & API Security 2025 calls for an API-centric approach to securing AI. Key recommendations include comprehensive API discovery, strong authentication and authorization, secure-by-design development, and continuous monitoring.
“AI doesn’t exist in a vacuum. It’s connected to everything, and that connection point is the API,” said Snyder. “If organizations want to innovate safely with AI, they need to start by securing the APIs that power it.”
Access the Report
The State of AI & API Security 2025 is available for download at: https://www.firetail.ai/reports/the-state-of-ai-and-api-security-2025

The post AI Innovation at Risk: FireTail’s 2025 Report Reveals API Security as the Weak Link in Enterprise AI Strategies – FireTail Blog appeared first on Security Boulevard.

One of the most critical elements of modern information security is encryption. Encryption is a complex field based solely on the arms race between people seeking secure ways to encode and encrypt data at rest and in transit and those seeking to break that encryption. Encryption is extremely commonplace. Most websites you visit use SSL, […]

The post Guide: What is KMI (Key Management Infrastructure)? appeared first on Security Boulevard.

Почему свет может быть и есть, и нет — и это не ошибка, а квантовая механика.

Secureworks Counter Threat Unit (CTU) researchers have uncovered innovative strategies deployed by the DragonForce and Anubis ransomware operators in 2025. These groups are adapting to law enforcement pressures with novel affiliate models designed to maximize profits and expand their reach, showcasing the resilience and ingenuity of modern cybercriminals in underground forums. DragonForce Pioneers a Distributed […]

The post DragonForce and Anubis Ransomware Gangs Launch New Affiliate Programs appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

An analysis of more than a half-million mobile apps find encryption problems, privacy issues, and known vulnerabilities in third-party code. What can users and developers do?

Researchers identified a new malware, named DslogdRAT, deployed after exploiting a now-patched flaw in Ivanti Connect Secure (ICS). JPCERT/CC researchers reported that a new malware, dubbed DslogdRAT, and a web shell were deployed by exploiting a zero-day vulnerability during attacks on Japanese organizations in December 2024. The vulnerability, tracked as CVE-2025-0282 (CVSS score: 9.0), is a […]

A vulnerability was found in Chocolatey PHP Package up to 8.1.12. It has been classified as critical. Affected is an unknown function of the file C:\tools\php81. The manipulation leads to permission issues. This vulnerability is traded as CVE-2022-45307. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability classified as critical was found in Chocolatey Gem up to 3.1.2.1 on Ruby. This vulnerability affects unknown code of the file C:\tools\ruby31. The manipulation leads to permission issues. This vulnerability was named CVE-2022-45301. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Chocolatey Package up to 3.11.0 on Python. This issue affects some unknown processing of the file C:\Python311. The manipulation leads to permission issues. The identification of this vulnerability is CVE-2022-45305. The attack may be initiated remotely. There is no exploit available.

A vulnerability has been found in Chocolatey Cmder Package up to 1.3.20 and classified as critical. This vulnerability affects unknown code of the file C:\tools\Cmder. The manipulation leads to permission issues. This vulnerability was named CVE-2022-45304. Access to the local network is required for this attack. There is no exploit available.