WordPress REST API flaw: How did it lead to widespread attacks?

Latest Technology News and Expert Advice A roundup of news and tips on the topics you're interested in | August 30, 2017 ISSUE HIGHLIGHTS WordPress REST API flaw: How did it lead to widespread attacks? Ticketbleed flaw: How can SSL session identities be protected? How to detect preinstalled malware in custom servers How did a Moodle security vulnerability enable remote code execution? Common web application login security weaknesses and how to fix them EXPERT ADVICE WordPress REST API flaw: How did it lead to widespread attacks? A REST API endpoint vulnerability enabled attacks on 1.5 million sites running WordPress. Expert Michael Cobb explains how this vulnerability works and how to prevent attacks.   Ticketbleed flaw: How can SSL session identities be protected? The Ticketbleed flaw in F5 Networks' BIG-IP appliances leaks uninitialized memory and SSL session identities. Expert Michael Cobb explains how enterprises can mitigate it.   How to detect preinstalled malware in custom servers Preinstalled malware was reportedly found by Apple in its custom servers. Expert Nick Lewis explains how enterprises can protect themselves from encountering similar issues.   How did a Moodle security vulnerability enable remote code execution? A series of logic flaws in Moodle enabled attackers to remotely execute code on servers. Expert Michael Cobb explains how the Moodle security vulnerability can be exploited.   Common web application login security weaknesses and how to fix them Flawed web application login security can leave an enterprise vulnerable to attacks. Expert Kevin Beaver reviews the most common mistakes and how to fix them.   About This E-Newsletter This email is published by the TechTarget Security Media Group. Copyright 2017 TechTarget, Inc. All rights reserved. Designated trademarks and brands are the property of their respective owners. To unsubscribe from all Security Media Group emails, Go to unsubscribe. TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466 Contact: webmaster@techtarget.com When you access content from this email, your information may be shared with the sponsors of that content as described in our Privacy Policy. About TechTarget: TechTarget publishes media for IT pros with more than 100 focused websites providing quick access to a deep store of news, advice and analysis about the technologies, products and processes crucial to your job.