NewsBizkoot.com

Tag: hacking

  • Google issued a warning for these users, do this immediately to avoid hacking

    Nowadays 5G technology is being used in smartphones. In such a situation, if you still use 2G service in today’s time, then you need to be careful. Actually, Google has issued a big warning in this regard.

    Google has said that such Android users who are still using 2G service are the target of hackers. Using these smartphones can also lead to problems like theft of phone data and device hacking.

    – Advertisement –

    2G users are at risk

    If you don’t know, then let us tell you that since the advent of 4G and 5G, the danger in 2G service has increased a lot. The security of the people using 2G service all over the world has decreased a lot, this is the reason why Google has issued a warning and alerted 2G users.

    Use of feature phone

    Many countries around the world are abandoning 2G services and moving towards 3G and 4G services. However, 2G service is still continuing in India, the reason behind this is clear that even today a large number of people in the country have feature phones and only 2G service works in feature phones.

    Also Read: WhatsApp facility will no longer be available on these smartphones, check the list immediately

    Google is trying

    Google and many telecom companies are trying their best to bring people using 2G services to 3G and 4G services so that any kind of fraud can be avoided. Along with this, Google is worried about the problem of SMS blaster in 2G service because with this, the same message can be sent to many people at the same time.

    Hackers can attack

    In such a situation, hackers can use this technique, however, 2G service will be discontinued in Android 12. To avoid any kind of threat from hackers, 2G service should be removed as soon as possible and move towards 3G and 4G service. Users get very little security in 2G service.

     

    – Advertisement –

  • Over 2 lakh WordPress websites vulnerable to hacking due to plugin bug

    5.4 mn customers’ knowledge uncovered on-line as Musk reveals Twitter 2.0


    (*2*)




    More than 2 lakh WordPress websites are on the hacking threat due to a essential unpatched safety vulnerability that was being actively exploited by malicious actors.

    According to WordPress safety agency WPScan, the bug is current within the Ultimate Member plugin, which is a free consumer profile WordPress plugin that makes it simple to create highly effective on-line communities and membership websites with WordPress.

    “This is a really severe situation as unauthenticated attackers might exploit this vulnerability to create new consumer accounts with administrative privileges, giving them the facility to take full management of affected websites,” the safety agency warned.

    Fraudsters get creative, come up with newer ways to dupe people

    IANS

    There was “no full repair to this situation” and worryingly, “there have been indications that this situation was being actively exploited by malicious actors,” the agency added.

    In response to the vulnerability report, the creators of the plugin promptly launched a brand new model, 2.6.4, intending to repair the issue.

    “However, upon investigating this replace, we discovered quite a few strategies to circumvent the proposed patch, implying the problem remains to be absolutely exploitable,” the WPScan workforce famous.

    The plugin operates by utilizing a pre-defined checklist of consumer metadata keys that customers mustn’t manipulate.

    Zomato hacking

    Reuters

    It makes use of this checklist to verify if customers try to register these keys when creating an account.

    “Unfortunately, variations in how the Ultimate Member’s blocklist logic and the way WordPress treats metadata keys made it doable for attackers to trick the plugin into updating some it should not,” mentioned the workforce.

    The safety researchers suggest that the customers ought to disable the Ultimate Member plugin till a patch that fully remediates this safety situation is made out there.

    Sites on WP.cloud hosts, similar to WordPress.com and Pressable.com, have obtained a platform-level patch to assist mitigate the vulnerability.

    (With inputs from IANS)