Our Threat Intelligence team disclosed numerous vulnerabilities this week, including a critical vulnerability in the Divi and Extra themes as well as the Divi Builder plugin. In total, this vulnerability affected over 700,000 sites. A vulnerability found in The Official Facebook Chat Plugin created a vector for social engineering attacks as it allowed an attacker […]
More info:
https://www.wordfence.com/blog/2020/08/episode-81-critical-vulnerability-exposes-over-700000-sites-using-divi-extra-and-divi-builder/
The Open Web Application Security Project (OWASP) is a nonprofit foundation that works to improve the security of software. The OWASP Top 10 is a standard awareness document for developers and web application security. It represents a broad consensus about the most critical security risks to web applications. The OWASP Top 10 Web Application Security […]
More info:
https://ithemes.com/what-is-owasp-and-the-owasp-top-10/
Jim Walker Free Consultation by Phone We Fix Hacked Websites Fast (619) 479-6637. If you haven’t heard, there’s a big update for WordPress coming soon. The WordPress 5.5 update will include a new feature called “Auto-updates for plugins and themes.” How does this auto-updates for plugins and themes option in WordPress affect you? In […]
More info:
https://hackrepair.com/blog/wordpress-5-5-auto-updates-are-coming-to-auto-update-or-not-auto-update-that-is-the-question
In the Feature Spotlight posts, we are going to highlight a feature in iThemes Security Pro and share a bit about why we developed the feature, who the feature is for, and how to use the feature. Today we are going to cover Two-Factor Authentication, a proven method to secure and protect your WordPress site. Why […]
More info:
https://ithemes.com/ithemes-security-pro-feature-spotlight-two-factor-authentication/
BREAKING CHANGES: this update contains a number of breaking changes. Please upgrade to WP Activity Log 4.1.2 before upgrading to version 4.1.3. We are happy to announce the launch of WP Activity Log 4.1.3. This update is particularly important for WooCommerce users. From this update onward the activity log for WooCommerce functionality will be available […]
More info:
https://wpactivitylog.com/wsal-4-1-3/
Here it is! Named “Eckstine” in honor of Billy Eckstine, this latest and greatest version of WordPress is available for download or update in your dashboard. Welcome to WordPress 5.5. In WordPress 5.5, your site gets new power in three major areas: speed, search, and security. Speed Posts and pages feel faster, thanks to lazy-loaded images. […]
More info:
https://wordpress.org/news/2020/08/eckstine/
GRUB2 vulnerability CVE-2020-10713 Security Advisory Security Advisory Description A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the ...
More info:
https://support.f5.com/csp/article/K42232641?utm_source=f5support&utm_medium=RSS
A new feature that will allow automatic updating of plugins and themes will be available in WordPress version 5.5, which is scheduled to be released on August 11, 2020. In this core release of the world’s most popular content management system, site owners will have the option to turn auto-updates on for individual plugins and […]
More info:
https://www.wordfence.com/blog/2020/08/wordpress-auto-updates-what-do-you-have-to-lose/
Do you want to make managing a WordPress multisite network easier? Running a single website is quite a task. So we understand how difficult it can get to manage many sites in a multisite network. A multisite network requires a higher level of management and maintenance. Many of the regular WordPress tasks become complex in […]
More info:
https://blogvault.net/wordpress-multisite-plugins/
Expat XML library vulnerability CVE-2015-1283 Security Advisory Security Advisory Description Multiple integer overflows in the XML_GetBuffer function in Expat through 2.1.0, as used in Google ...
More info:
https://support.f5.com/csp/article/K15104541?utm_source=f5support&utm_medium=RSS
