SNMP vulnerability CVE-2019-20892 Security Advisory Security Advisory Description net-snmp before 5.8.1.pre1 has a double free in usm_free_usmStateReference in snmplib/snmpusm.c via an SNMPv3 ...
More info:
https://support.f5.com/csp/article/K45212738?utm_source=f5support&utm_medium=RSS
iThemes Security Pro is jam-packed full of 50+ security methods to secure and protect your WordPress website. That is a ton of options! If you find yourself not knowing where to start after installing iThemes Security Pro, don’t worry, we’ve got you covered. In this post, we will cover the top 10 things to do […]
More info:
https://ithemes.com/the-top-10-things-to-do-after-installing-ithemes-security-pro/
Imagine this, you update to WordPress 5.5 and turn on auto-updates thinking it’ll be more convenient. While you are asleep, 2 of your plugins get updated automatically. And then you end up looking like this. Sounds familiar? Don’t worry, you’re not alone. The Auto-Update feature in WordPress 5.5 has been keeping many agency owners and […]
More info:
https://blogvault.net/our-solution-to-auto-updates/
WP 2FA 1.4.2 comes with a good number of improvements. This update will benefit mostly those who want to setup two-factor authentication on a multisite network, or have multiple word user roles, such as shop manager in WooCommerce. However, there is much more to this update than just that. Let’s dive right in to see […]
More info:
https://www.wpwhitesecurity.com/wp-2fa-1-4-2/
glibc vulnerability CVE-2020-10029 Security Advisory Security Advisory Description The GNU C Library (aka glibc or libc6) before 2.32 could overflow an on-stack buffer during range reduction if an ...
More info:
https://support.f5.com/csp/article/K38481791?utm_source=f5support&utm_medium=RSS
WordPress 5.5.1 is now available! This maintenance release features 34 bug fixes, 5 enhancements, and 5 bug fixes for the block editor. These bugs affect WordPress version 5.5, so you’ll want to upgrade. You can download WordPress 5.5.1 directly, or visit the Dashboard → Updates screen and click Update Now. If your sites support automatic background updates, they’ve already started the update process. […]
More info:
https://wordpress.org/news/2020/09/wordpress-5-5-1-maintenance-release/
This morning, on September 1, 2020, the Wordfence Threat Intelligence team was alerted to the presence of a vulnerability being actively exploited in File Manager, a WordPress plugin with over 700,000 active installations. This vulnerability allowed unauthenticated users to execute commands and upload malicious files on a target site. A patch was released this morning […]
More info:
https://www.wordfence.com/blog/2020/09/700000-wordpress-users-affected-by-zero-day-vulnerability-in-file-manager-plugin/
The endpoint detection & response (EDR) market is going through the biggest period of change and innovation now. Historically, EDR was created to provide borderline protection for a system. It provides coverage for endpoints in an attack, and the result is an endpoint security that covers many security gaps and blind spots. However, EDR The post XDR Defined appeared first on Security & Compliance Blog.
More info:
https://blogs.vmware.com/security/2020/09/xdr-defined.html?utm_source=rss&utm_medium=rss&utm_campaign=xdr-defined
The Google Chrome web browser has a high-severity vulnerability that could be used to execute arbitrary code, which has been fixed in Chrome version 85. Google also announced that Chrome 86 will alert users if a form submission is using the insecure HTTP protocol, making it a good time to audit older sites that may […]
More info:
https://www.wordfence.com/blog/2020/08/episode-84-google-chrome-plans-to-implement-insecure-form-warnings/
The Google Chrome web browser has a high-severity vulnerability that could be used to execute arbitrary code, which has been fixed in Chrome version 85. Google also announced that Chrome 86 will alert users if a form submission is using the insecure HTTP protocol, making it a good time to audit older sites that may […]
More info:
https://www.wordfence.com/blog/2020/08/episode-84-google-chrome-plans-to-implement-insecure-form-warnings/
