Posted: June 3, 2026 Category: Security Advisory Severity: High for public HTTP/2 endpoints Reliable Penguin is aware of public reports regarding CVE-2026-49975, also referred to as the HTTP/2 Bomb vulnerability. This issue may allow a remote ...
Reliable Penguin has reviewed managed WordPress servers for a recently disclosed vulnerability in the Advanced Custom Fields: Extended WordPress plugin, also commonly referred to as ACF Extended or ACFE. Summary Wordfence published an advisory for a ...
Kirki WordPress Plugin Vulnerability Reliable Penguin has reviewed managed WordPress servers for a recently disclosed vulnerability in the Kirki WordPress plugin. Summary Wordfence published an advisory for a critical unauthenticated privilege ...
If you are being granted an IAM login with AdministratorAccess, this provides full control over the AWS environment. To ensure the security of the infrastructure, you must follow these rules: Enable Multi-Factor Authentication (MFA) Immediately - ...