Category: Security

Posted on

Database of 4 million Adult Friend Finder users leaked

E-mail addresses, sexual orientations, and other sensitive details from almost four million AdultFriendFinder.com subscribers have been leaked onto the Internet following a hack that rooted the casual dating service, security researchers said.The cache includes more than 3.8 million unique e-mail addresses of current and former subscribers, Australian security researcher Troy Hunt reported early Friday morning. The data, which is in the form of 15 Microsoft Excel spreadsheets, was first seeded to anonymous sites hosted on the Tor privacy network. It has since spread to sites on the open Internet. Links to sites hosting the data are easily found on Twitter and other social networking sites, (Ars isn’t publishing the locations).

Read on, source: Database of 4 million Adult Friend Finder users leaked for all to see | Ars Technica

Posted on

WordPress patches critical XSS vulnerability

WordPress developer Auttomatic is urging users to urgently update their installations of the company’s publishing platform to fix a critical vulnerability that could lead to attackers taking over entire sites.Jouko Pynnönen of security vendor Klikki.fi discovered a cross-site scripting (XSS) flaw in WordPress that allows commenters to inject Javascript into sites.When admin users check the comments to moderate them and execute the Javascript they contain attackers can gain full control of the target WordPress site through the plugin and theme editors.

Read on, source: WordPress patches critical XSS vulnerability – Security – News – iTnews.com.au