- Más de 100 millones de dólares en criptodivisas fueron robados por medio del secuestro de números de teléfono.
Un total de ocho delincuentes fueron detenidos el pasado 9 de febrero como resultado de una investigación internacional acerca de una serie de ataques de SIM swapping (o intercambio de tarjetas SIM) dirigidos a celebridades de Estados Unidos. Estas detenciones se suman a otras anteriores en Malta y Bélgica de otros miembros pertenecientes a la misma red delictiva.
Los ataques orquestados por esta banda delictiva se dirigieron a miles de víctimas a lo largo de 2020, entre las que se encontraban famosos influencers de Internet, estrellas del deporte, músicos y sus familias. Se cree que los delincuentes les robaron más de 100 millones de dólares en criptodivisas tras acceder ilegalmente a sus teléfonos.
Este barrido internacional se produce tras una investigación de un año de duración llevada a cabo conjuntamente por las autoridades policiales del Reino Unido, Estados Unidos, Bélgica, Malta y Canadá, con una actividad internacional coordinada por Europol.
Europol (10/02/2021)
BIG-IP AFM vulnerability CVE-2021-22983 Security Advisory Security Advisory Description Authenticated users accessing the Configuration utility for AFM are vulnerable to a cross-site scripting ...
More info:
https://support.f5.com/csp/article/K76518456?utm_source=f5support&utm_medium=RSS
Aside from providing significant protection from a wide range of threats, the Sucuri WAF also acts as a CDN due to its caching capabilities and regional PoPs — often performing even better than dedicated CDNs based on recent tests. CDNs can significantly help speed up your website by storing and delivering content as close to […]
More info:
http://feedproxy.google.com/~r/sucuri/blog/~3/2rl9l8_5oEA/optimizing-performance-and-behavior-with-wordpress-and-the-sucuri-waf.html
WordPress 5.7 Beta 2 is now available for testing! This software is still in development, so it’s not recommended to run this version on a production site. Consider setting up a test site to play with it. You can test the WordPress 5.7 Beta 2 in two ways: Install/activate the WordPress Beta Tester plugin (select the Bleeding […]
More info:
https://wordpress.org/news/2021/02/wordpress-5-7-beta-2/
New WordPress plugin and theme vulnerabilities were disclosed during the first half of February. This post covers the recent WordPress plugin, theme, and core vulnerabilities and what to do if you run one of the vulnerable plugins or themes on your website. The WordPress Vulnerability Roundup is divided into three different categories: WordPress core, WordPress […]
More info:
https://ithemes.com/wordpress-vulnerability-roundup-february-2021-part-1/
You’re searching the web for information on how to choose the best WordPress web hosting service, right? You’re determined that your website host will help search engines prioritize your website above other slower, less reliable and less secure websites. But, how do you decide? This blog post defines the four main types of WordPress web […]
More info:
https://www.wpwhitesecurity.com/best-wordpress-hosting/
On December 14, 2020, the Wordfence Threat Intelligence team finished researching two Cross-Site Request Forgery (CSRF) vulnerabilities in NextGen Gallery, a WordPress plugin with over 800,000 installations, including a critical severity vulnerability that could lead to Remote Code Execution(RCE) and Stored Cross-Site Scripting(XSS). Exploitation of these vulnerabilities could lead to a site takeover, malicious redirects, […]
More info:
https://www.wordfence.com/blog/2021/02/severe-vulnerabilities-patched-in-nextgen-gallery-affect-over-800000-wordpress-sites/
This article covers our public notifications related to major security issues our clients and the WordPress community should know about. We are always focused on prevention and the mitigation of […]
More info:
https://pagely.com/blog/wordpress-security-updates-january-2021/
Linux kernel CVE-2020-10769 Security Advisory Security Advisory Description A buffer over-read flaw was found in RH kernel versions before 5.0 in crypto_authenc_extractkeys in crypto/authenc.c in ...
More info:
https://support.f5.com/csp/article/K62532228?utm_source=f5support&utm_medium=RSS
Libgcrypt vulnerability CVE-2021-3345 Security Advisory Security Advisory Description _gcry_md_block_write in cipher/hash-common.c in Libgcrypt version 1.9.0 has a heap-based buffer overflow when ...
More info:
https://support.f5.com/csp/article/K00498403?utm_source=f5support&utm_medium=RSS
