Administrators of servers running Ruby on Rails are advised once again to upgrade to the latest versions of the framework (3.2.11, 3.1.10, 3.0.19, and 2.3.15), as a vulnerability that exists in previous versions is being actively exploited in the wild to rope servers into an IRC botnet.
Barracuda Networks announced Barracuda Web Application Firewall 7.8, specifically aimed at reducing the impact of automated attack attempts from botnets.
Some two months ago, Reporters Without Borders have identified UK-based Gamma International as one of the "enemies of the Internet" due to their FinFisher spyware tool kit being used by a number of oppressive governments.
In order to relieve the curiosity of the huge Reddit community, systems administrator Jason Harvey has shared some details about the DDoS attack that recently hit the popular social news site and caused it to go down for a period of 50 minutes.
US-CERT has issued an alert regarding the ongoing massive brute-force attacks against WordPress sites, warning users and administrators to keep their installation always updated and to change the username and password for their WordPress accounts - especially if they kept the default "admin" username and use an easy-to-guess, commonly-used password.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.