A critical vulnerability in early cryptocurrency wallets, identified by cybersecurity startup Unciphered, threatens billions of dollars in digital assets. Originating from a flaw in the BitcoinJS software used for wallet generation between 2011 and 2015, this issue exposes wallets to potential exploitation. Millions of users are being urged to transfer their assets to wallets generated […]
Wordfence CLI 2.0.1 introduced free vulnerability scanning this week. The new CLI product was launched at WordCamp US two months ago with malware detection capabilities, but the latest update brings in the most highly requested feature – vulnerability scanning at scale. Wordfence is most well-known for its Web Application Firewall, …
Antoine Riard, a security researcher and developer who exposed a vulnerability in the Lightning Network, Bitcoin’s scaling layer, has clarified this vulnerability is not an “intentional backdoor,” addressing statements made on social media. Riard stressed the problem had been known since 2022 and called on mainstream outlets to do responsible reporting on this issue. Lightning […]
The LiteSpeed Cache plugin, used on more than four million WordPress sites, has patched an XSS vulnerability in version 5.7. The plugin provides all-in-one site acceleration capabilities, server-level caching, and a collection of optimization features. It is compatible with WordPress multisite, and popular plugins like WooCommerce, bbPress, and Yoast SEO, which may contribute …
Antoine Riard, a Lightning Network (LN) developer, recently disclosed a major vulnerability affecting Bitcoin’s scaling layer. This vulnerability, which was addressed with a series of mitigations, involves a “new transaction-relay jamming attack” that can affect shared funds in channels. Riard abandoned LN-related work after testing the feasibility of these attacks in the open. Lightning Network […]