Aggregator

A critical security vulnerability has been discovered in the popular Post SMTP plugin for WordPress, potentially exposing over 400,000 websites to account takeover attacks. The vulnerability, tracked as CVE-2025-24000, affects versions 3.2.0 and below of the plugin, allowing even low-privileged users to access sensitive email data and ultimately gain administrative control of affected websites as […]

The post 400,000 WordPress Websites Exposed by Post SMTP Plugin Vulnerability appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A major cybersecurity breach has exposed the browsing activities of users visiting one of the internet’s most notorious illegal marketplaces.  On Friday, July 18, cybersecurity firm UpGuard discovered an unprotected Elasticsearch database containing approximately 22 million records of web requests, with 95% of traffic directed to leakzone[.]net, a prominent “leaking and cracking forum” that facilitates […]

The post Leak Zone Dark Web Forum Database Exposes 22 Million Users’ IP Addresses and Locations appeared first on Cyber Security News.

Cybercriminals have reportedly claimed a successful breach of Airpay, an Indian payment gateway service, raising serious concerns about the security of financial data and customer information. The allegations surfaced on underground forums where threat actors are allegedly offering access to sensitive data for sale, though the full extent and validity of the claimed breach remains […]

The post Threat Actors Claim Breach of Airpay Payment Gateway appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

This will be the title of the blog post: "Court Injunctions are the Thoughts and Prayers of Data Breach Response". It's got a nice ring to it, and it resonates so much with the response to other disasters where the term is offered as a platitude