WP 2FA 1.4.2 comes with a good number of improvements. This update will benefit mostly those who want to setup two-factor authentication on a multisite network, or have multiple word user roles, such as shop manager in WooCommerce. However, there is much more to this update than just that. Let’s dive right in to see […]
More info:
https://www.wpwhitesecurity.com/wp-2fa-1-4-2/
glibc vulnerability CVE-2020-10029 Security Advisory Security Advisory Description The GNU C Library (aka glibc or libc6) before 2.32 could overflow an on-stack buffer during range reduction if an ...
More info:
https://support.f5.com/csp/article/K38481791?utm_source=f5support&utm_medium=RSS
WordPress 5.5.1 is now available! This maintenance release features 34 bug fixes, 5 enhancements, and 5 bug fixes for the block editor. These bugs affect WordPress version 5.5, so you’ll want to upgrade. You can download WordPress 5.5.1 directly, or visit the Dashboard → Updates screen and click Update Now. If your sites support automatic background updates, they’ve already started the update process. […]
More info:
https://wordpress.org/news/2020/09/wordpress-5-5-1-maintenance-release/
This morning, on September 1, 2020, the Wordfence Threat Intelligence team was alerted to the presence of a vulnerability being actively exploited in File Manager, a WordPress plugin with over 700,000 active installations. This vulnerability allowed unauthenticated users to execute commands and upload malicious files on a target site. A patch was released this morning […]
More info:
https://www.wordfence.com/blog/2020/09/700000-wordpress-users-affected-by-zero-day-vulnerability-in-file-manager-plugin/
The endpoint detection & response (EDR) market is going through the biggest period of change and innovation now. Historically, EDR was created to provide borderline protection for a system. It provides coverage for endpoints in an attack, and the result is an endpoint security that covers many security gaps and blind spots. However, EDR The post XDR Defined appeared first on Security & Compliance Blog.
More info:
https://blogs.vmware.com/security/2020/09/xdr-defined.html?utm_source=rss&utm_medium=rss&utm_campaign=xdr-defined
The Google Chrome web browser has a high-severity vulnerability that could be used to execute arbitrary code, which has been fixed in Chrome version 85. Google also announced that Chrome 86 will alert users if a form submission is using the insecure HTTP protocol, making it a good time to audit older sites that may […]
More info:
https://www.wordfence.com/blog/2020/08/episode-84-google-chrome-plans-to-implement-insecure-form-warnings/
The Google Chrome web browser has a high-severity vulnerability that could be used to execute arbitrary code, which has been fixed in Chrome version 85. Google also announced that Chrome 86 will alert users if a form submission is using the insecure HTTP protocol, making it a good time to audit older sites that may […]
More info:
https://www.wordfence.com/blog/2020/08/episode-84-google-chrome-plans-to-implement-insecure-form-warnings/
The best way to secure your WordPress users in 2020 is by using a strong password and two-factor authentication. That seems pretty straightforward, right? The reality is that WordPress user security is a bit more nuanced. Whenever we talk about user security, we often hear questions like, should every WordPress user have the same security […]
More info:
https://ithemes.com/7-tips-to-secure-wordpress-users-in-2020/
The best way to secure your WordPress users in 2020 is by using a strong password and two-factor authentication. That seems pretty straightforward, right? The reality is that WordPress user security is a bit more nuanced. Whenever we talk about user security, we often hear questions like, should every WordPress user have the same security […]
More info:
https://ithemes.com/7-tips-to-secure-wordpress-users-in-2020/
Hello everyone, it’s Kanishk from Astra Security. This is another edition of the Monthly WordPress Security Roundup for August 2020. Today we’ll discuss the core changes in the new WordPress 5.5 updates, recent vulnerabilities found in WP plugins and themes, and some other security issues. So, let’s get straight into the news. WordPress rolls out […]
More info:
https://www.getastra.com/blog/cms/wordpress-security/monthly-wordpress-security-roundup-august-2020/
