Why We Are Here > Web Development

Hackers exploit 14-year-old CMS editor on govt, edu sites for SEO poisoning

(1/1)

rcjordan:
https://www.bleepingcomputer.com/news/security/hackers-exploit-14-year-old-cms-editor-on-govt-edu-sites-for-seo-poisoning/

ergophobe:
FCKEditor in 2024? Seriously people?

OTOH… this is another reason why a lot of blog platforms now don’t include commenting. Complex systems will have holes and allowing non-authenticated users to enter stuff on your website multiplies the exploit threat a hundred fold.

https://xkcd.com/327/

rcjordan:
related:

Our online pharmacies and medical providers are learning about Little Bobby Tables. So far this year, I've been notified by 3 systems that they've been hacked and patient info was taken.

Debbie says that they've all probably been hacked and info stolen in the past but new fed regulations now make them notify.

(All of my credit bureau accounts have been frozen for a decade or more.)

Navigation

[0] Message Index