Санҷиши амнияти вебсайт

WordPress powers 37% of all websites on the internet in 2021. That’s 10% more than in 2016 when they powered only 25% of websites. WordPress powers over 13 times the number of CMS websites compared to Joomla, the second most popular CMS host.

Undertaking a regular website security test of your WordPress website is critical to ensure any vulnerabilities or malware as fixed.

An example of this is hackers have reportedly scanned almost 1.6 million WordPressn websites in attempts to exploit an arbitrary file upload vulnerability in a previously disclosed buggy WordPress plugin.

The vulnerability targets Kaswara Modern WPBakery Page Builder Addons ва, if exploited, it would allow criminals to upload malicious JavaScript files and even completely take over an organization’s website.

Вайрон кардани амнияти Hack-ро бовар кунед

Бузургҷуссаи амниятӣ Entrust ниҳоят тасдиқ кард, ки системаҳои IT-и дохилиаш дар моҳи июн рахна шудаанд.

Entrust як ширкати амниятӣ аст, ки ба эътимоди онлайн ва идоракунии шахсият нигаронида шудааст, пешниҳоди доираи васеи хизматрасонӣ, аз ҷумла алоқаи рамзгузорӣ, пардохтҳои рақамӣ бехатар, ва роҳҳои ҳалли додани ID.

Ҳакерҳо "баъзе файлҳоро" дуздидаанд, фурӯшандаи амнияти Entrust иқрор мешавад: Моҳи гузашта вайронкунии маълумот бо дастрасии беиҷозати системаҳои дохилӣ тасдиқ карда шуд.

Entrust has reluctantly admitted the databreach, ки ба дуздидани маълумоти асосии корпоративӣ оварда мерасонад. Вайронкунӣ ба DOJ таъсир мерасонад, DOE, ва USDT, дар байни дигар ташкилотхои калон.

Танҳо 26 июл, вақте ки пажӯҳишгари амният Доминик Алвиери скриншоти огоҳиномаи амниятӣ ба муштариёни Entrust ирсолшударо дар Твиттер навишт, вайронкунӣ ба таври оммавӣ тасдиқ карда шуд..

Амалиёти гурӯҳи масъул ба шабакаи боэътимоди фурӯшандагони дастрасии шабака барои ба даст овардани дастрасии ибтидоӣ ба муҳити Entrust такя мекард, ки боиси рамзгузории минбаъда ва эксфилтратсия тавассути гурӯҳи маълуми нармафзори ransomware гардид..

Ҳоло маълум нест, ки фидя пардохт шудааст ё на.

Вайронкунӣ моҳи июн ошкор шуд 18 and the firm started notifying customers on July 6. The reasons for the delay on notifying customers was not given. Ин таъхир метавонад ба таври возеҳ системаҳои муштариёнро зери хатар гузорад ва метавонад беэътиноӣ ҳисобида шавад.

Эъломия изҳор намуд “Мо муайян кардем, ки баъзе файлҳо аз системаҳои дохилии мо гирифта шудаанд. Вақте ки мо таҳқиқи ин масъаларо идома медиҳем, мо бевосита бо шумо тамос хоҳем гирифт, агар мо маълумотеро фаҳмем, ки ба фикри мо ба амнияти маҳсулот ва хидматҳои ба ташкилоти шумо пешниҳодшаванда таъсир мерасонад.” – Бовар кунед.

 

 

 

 

Your device is missing important security and quality fixes error

Here are few methods that can be helpful and any of them can be your solution.

1. Use Windows Settings Troubleshoot tool

Open Windows Settings and select Update & Security. Now go to the left pane and select Troubleshoot. Once the Windows Update troubleshooter opens, click “Run the troubleshooter” and wait for the process to complete. After the system restarts, try updating your computer again.

3. Repair corrupted files

Аввал, run Command Prompt: In the Windows search box, type cmd, right-click the desired result and select “Run as administrator”.

Next, in the Command Prompt window, enter DISM.exe / Online / Cleanup-image / Restorehealth, press Enter and wait a few minutes for the process to complete. Now type sfc / scannow and press Enter. After the process is complete, close Command Prompt and check if Windows Update is working.

5. Rollback OS updates

Open Computer Settings and open Update & Security and in the right section, click “View update history”. Next, select Uninstall Updates and in the list that appears, click the latest update for Microsoft Windows. Now uninstall it and go back to Windows Update to check for updates. Both new and old updates should be installed as intended. You can also go to the official Microsoft Update Catalog website and search for the updates you are interested in; download and install them manually.

OKTA Security Breach 2022

Many large corporate customers were horrified to learn of the recent Okta security breach.

Okta says 366 corporate customers, or about 2.5% of its customer base, were impacted by a security breach that allowed hackers to access the company’s internal network.

The authentication giant admitted the compromise after the Lapsus$ hacking and extortion group posted screenshots of Okta’s apps and systems on Monday, some two months after the hackers first gained access to its network.

The breach was initially blamed on an unnamed subprocessor that provides customer support services to Okta. In an updated statement on Wednesday, Okta’s chief security officer David Bradbury confirmed the subprocessor is a company called Sykes, which last year was acquired by Miami-based contact center giant Sitel.

Okta has admitted it “made a mistake” by not telling customers sooner about a security breach in January, in which hackers were able to access the laptop of a third-party customer support engineer.

The Lapsus$ hacking group published screenshots of Okta’s systems on March 22, taken from the laptop of a Sitel customer support engineer, which the hackers had remote access to on January 20.

“We want to acknowledge that we made a mistake. Sitel is our service provider for which we are ultimately responsible. In January, we did not know the extent of the Sitel issue – only that we detected and prevented an account takeover attempt and that Sitel had retained a third party forensic firm to investigate. At that time, we didn’t recognize that there was a risk to Okta and our customers

 

This is a sample intro paragraph and can be used to introduce readers to your article.

Ин як мисоли паёми WordPress аст, шумо метавонед онро таҳрир кунед, то дар бораи худ маълумот гузоред, то хонандагон донанд, ки шумо аз куҷо омадаед. Шумо метавонед шумораи зиёди паёмҳоро эҷод кунед, то бо онҳо чизеро, ки дар фикри шумост, мубодила кунед.

Continue Reading