SECURITY WARNINGS & Notices - Please post them here

[Asyn]

Security Notification and Linode Manager Password Reset
http://status.linode.com/incidents/ghdlhfnfngnh

[Para-Noid]

Facebook “Page Disabled” Phish Wants your Card Details

https://blog.malwarebytes.org/fraud-scam/2016/01/facebook-page-disabled-phish-wants-your-card-details/?utm_source=gplus&utm_medium=social

WebSearcher PUP applies Proxy Lockdown

https://blog.malwarebytes.org/security-threat/2016/01/websearcher-pup-applies-proxy-lockdown/?utm_source=Gplus&utm_medium=social

[Staticguy]

Microsoft pulling support for Internet Explorer 8, 9, 10

http://money.cnn.com/2016/01/06/technology/microsoft-internet-explorer-support/

[polonus]

Abused by cybercriminals: http://blog.trendmicro.com/trendlabs-security-intelligence/lets-encrypt-now-being-abused-by-malvertisers/

pol

[polonus]

Attackers can take over websites. 25% of websites run the WordPress CMS.
New WordPress hole, users should update asap:
https://wordpress.org/news/2016/01/wordpress-4-4-1-security-and-maintenance-release/
Re commit: https://github.com/WordPress/WordPress/commit/7ab65139c6838910426567849c7abed723932b87

With WP all files are inside a public folder,
normally one should only have an index.php, a .htaccess file and CSS/JS/Images files in there.

polonus

[Secondmineboy]

Attackers can take over websites. 25% of websites run the WordPress CMS.
New WordPress hole, users should update asap:
https://wordpress.org/news/2016/01/wordpress-4-4-1-security-and-maintenance-release/
Re commit: https://github.com/WordPress/WordPress/commit/7ab65139c6838910426567849c7abed723932b87

With WP all files are inside a public folder,
normally one should only have an index.php, a .htaccess file and CSS/JS/Images files in there.

polonus

And the WP site alreeady runs 4.5
http://prntscr.com/9n5uva

[polonus]

Right you are, dear Steven, but you also have compatibility issues to reckon with, read: https://wordpress.org/support/topic/wordpress-version-and-php-compatibility &  http://www.wpbeginner.com/beginners-guide/how-does-php-updates-by-your-web-host-impacts-your-wordpress-sites/  &  https://wordpress.org/about/requirements/

pol

[Para-Noid]

Pardon me but...every time I try to find the WP version using wappalyzer I can't find it.
What am I doing wrong?  Color me frustrated. 

[Secondmineboy]

Pardon me but...every time I try to find the WP version using wappalyzer I can't find it.
What am I doing wrong?  Color me frustrated. 

Wappalyzer sometimes cant get the version and you can also block the version number on Apache and some other softwares

Look at Wordpress.org with Wappalyzer, it should you a version number.

[polonus]

Hi Steven Winderlich and Para-Noid,

Easiest way is to go here: http://www.wpthemedetector.com/
Whenever you know there is WP used as CMS, do a scan here: hackertarget.com/wordpress-security-scan/
Here you can do a simple scan for version number, outdated WP plug-ins, whether there is major insecurity like user enumeration or directory listing enabled  etc.
Use this bookmarklet: https://codex.wordpress.org/Press_This
The bookmark calls http://example.com/wp-admin/press-this.php?u=&t=&s=&i=

u = the url of the current page
t = the title of the current page
s = the text selection from the current page
i = url of an image file
Edit the bookmark within your browser to change the values passed if necessary.

polonus (volunteer website security analyst and website error-hunter)

[Secondmineboy]

They need to do some updates. http://prntscr.com/9nbs6q

Look at the NGinx version of Centos.org, or the Apache version on SUSE.com.......Its ridiculous.

@Damian: Check http://gsd-drolshagen.de/site/ on your link and look at the results.

[polonus]

Hi Steven Winderlich, you are right, see it now, some work to be done there by the admins.

WP - WP configuration:Custom. Web application version:
WordPress version: WordPress
Wordpress version from source: 4.0.9
Wordpress Version 4.0 based on: -http://gsd-drolshagen.de/site//wp-admin/js/common.js
WordPress directory: -http://gsd-drolshagen.de/site/wp-content
WordPress theme: -http://gsd-drolshagen.de/site/wp-content/themes/mutootheme/
Author:mutoo GmbH
Description:Template from mutoo
WordPress version outdated: Upgrade required.
Outdated WordPress Found: WordPress Under 4.2

Plug-ins to be checked and updated
The following plugins were detected by reading the HTML source of the WordPress sites front page.

responsive-slider   latest release (0.1.
http://alienwp.com/plugins/responsive-slider
nivo-slider   
wp-google-maps   latest release (6.3.04)
http://www.wpgmaps.com
contact-form-7   latest release (4.3.1)
http://contactform7.com/

But also jQuery library issues: -http://gsd-drolshagen.de
Detected libraries:
jquery-migrate - 1.2.1 : -http://gsd-drolshagen.de/site/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery - 1.11.1 : -http://gsd-drolshagen.de/site/wp-includes/js/jquery/jquery.js?ver=1.11.1
1 vulnerable library detected

polonus (volunteer website security analyst and website error-hunter)

[Secondmineboy]

@Damian: Remember this site?  http://www.druckerei-hachenburg.de/

Still alot to update, IDIOTIC ADMINS I CAN SAY.

[Asyn]

[Security-announce] NEW VMSA-2016-0001 VMware ESXi, Workstation, Player, and Fusion updates address important guest privilege escalation vulnerability
http://lists.vmware.com/pipermail/security-announce/2016/000316.html

[Para-Noid]

Malvertising Campaign via Pop-under Ads Sends CryptoWall 4

https://blog.malwarebytes.org/malvertising-2/2016/01/malvertising-campaign-via-pop-under-ads-sends-cryptowall-4/?utm_source=gplus&utm_medium=social

Clickjacking Campaign Plays on European Cookie Law

https://blog.malwarebytes.org/fraud-scam/2016/01/clickjacking-campaign-plays-on-european-cookie-law/?utm_source=gplus&utm_medium=social

Was Mac OS X really the most vulnerable in 2015?

https://blog.malwarebytes.org/mac/2016/01/was-mac-os-x-really-the-most-vulnerable-in-2015/?utm_source=gplus&utm_medium=social

Stranger hacks family's baby monitor and talks to child at night   (This one is really frightening.)

http://sfglobe.com/2016/01/06/stranger-hacks-familys-baby-monitor-and-talks-to-child-at-night/