A cross-site scripting (XSS) vulnerability found in the Jetpack plug-in of the popular content management system WordPress puts over a million websites using it at risk of getting their admin accounts hijacked.
Users and software vendors using the application are strongly urged to update to the latest version after discovering major vulnerabilities in the program.
Image-processing tool ImageMagick has been found to have a bug that could expose websites to attacks, affecting sites that use the tool and those that allow image uploads.
A new post on an underground cybercrime forum confirmed the theft and intent to sell stolen data of 1.5 million customers of Verizon Enterprise Solutions.