Month: febrero 2019

• En unas conclusiones parlamentarias hacen hincapié en conjugar la libertad en la red con la seguridad.

La Comisión Mixta de Seguridad Nacional Congreso-Senado trabaja en un informe en el que propone la modificación del Código Penal para reforzar las penas perpetradas por ciberdelincuentes, a la vez que aboga por una regulación internacional sobre el conflicto en el espacio virtual.

Así se desprende del borrador de dictamen en el que trabajan los grupos parlamentarios, al que ha tenido acceso Europa Press, y que es fruto de meses de trabajo durante los que han desfilado por la comisión numerosos expertos en ciberseguridad, tanto del ámbito público como privado.

El documento, que los partidos prevén aprobar el próximo jueves, considera "conveniente" la modificación del Código Penal para tipificar la figura de suplantación de identidad en la red; a la vez que reclama que se abra la puerta a que los parientes de un fallecido puedan denunciar en su nombre los delitos de injurias y calumnias.

También propone al Gobierno que estudie la posibilidad de sancionar con la prohibición para utilizar Internet o administrar páginas web a quienes hayan sido condenados por delitos como, por ejemplo, el acoso a menores a través de la red.

La Vanguardia (24/02/2019)

Más información

 

Project: Drupal coreDate: 2019-February-20Security risk: Highly critical 21∕25 AC:None/A:None/CI:All/II:All/E:Proof/TD:UncommonVulnerability: Remote Code ExecutionCVE IDs: CVE-2019-6340Description: Some field types do not properly sanitize data from non-form sources. This can lead to arbitrary PHP code execution in some cases.A site is only affected by this if one of the following conditions is met:The site has the Drupal 8 core RESTful Web Services (rest) module enabled and allows GET, More info: https://www.drupal.org/sa-core-2019-003

Project: Drupal coreDate: 2019-February-20Security risk: Highly critical 21∕25 AC:None/A:None/CI:All/II:All/E:Proof/TD:UncommonVulnerability: Remote Code ExecutionCVE IDs: CVE-2019-6340Description: Some field types do not properly sanitize data from non-form sources. This can lead to arbitrary PHP code execution in some cases.A site is only affected by this if one of the following conditions is met:The site has the Drupal 8 core RESTful Web Services (rest) module enabled and allows GET, More info: https://www.drupal.org/sa-core-2019-003

Project: Drupal coreDate: 2019-February-20Security risk: Highly critical 21∕25 AC:None/A:None/CI:All/II:All/E:Proof/TD:UncommonVulnerability: Remote Code ExecutionCVE IDs: CVE-2019-6340Description: Some field types do not properly sanitize data from non-form sources. This can lead to arbitrary PHP code execution in some cases.A site is only affected by this if one of the following conditions is met:The site has the Drupal 8 core RESTful Web Services (rest) module enabled and allows GET, More info: https://www.drupal.org/sa-core-2019-003

Project: Drupal coreDate: 2019-February-20Security risk: Highly critical 21∕25 AC:None/A:None/CI:All/II:All/E:Proof/TD:UncommonVulnerability: Remote Code ExecutionCVE IDs: CVE-2019-6340Description: Some field types do not properly sanitize data from non-form sources. This can lead to arbitrary PHP code execution in some cases.A site is only affected by this if one of the following conditions is met:The site has the Drupal 8 core RESTful Web Services (rest) module enabled and allows GET, More info: https://www.drupal.org/sa-core-2019-003

BIND vulnerability CVE-2019-6465 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a ... More info: https://support.f5.com/csp/article/K01713115

BIG-IP SNMP vulnerability CVE-2018-15328 Security Advisory Security Advisory Description The passphrases for SNMPv3 users and trap destinations that are used for authentication and privacy are not ... More info: https://support.f5.com/csp/article/K42027747

BIND vulnerability CVE-2018-5744 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a ... More info: https://support.f5.com/csp/article/K00040234

BIND vulnerability CVE-2018-5745 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a ... More info: https://support.f5.com/csp/article/K25244852

https://www.wpwhitesecurity.com/automated-wordpress-security-protection-sucuri/WordPress security is easy, when you have the right automated tools. When I started using WordPress I did all the site hardening myself, manually. WordPress security hardening is not difficult, especially if you have a background in web application security. You can also find quite a few checklists online and follow if you are new […] More info: https://www.wpwhitesecurity.com/automated-wordpress-security-protection-sucuri/