SEC Data Breach Disclosure
by Artie Kaye
Companies which are publicly traded will have to comply with a new regulation on reporting cyber incidents. A summary about certain procedures was released by the FBI. There is a 4 business day time frame for submitting information regarding the incident to the SEC. Delays in public filing can be allowed in circumstances in which it could affect public safety or national security. The full policy notice and the summary of the notice can be found linked below. (Links open in a new tab/window.)
Third-Party references:
Click the links below to learn more details. (Opens in a new tab/window.)
WordPress Backup Migration
by Artie Kaye
A flaw was discovered in this plugin which could allow site takeover. Utilizing PHP insertion, an attacker could execute arbitrary code on affected devices. This method has seen attempted exploitation in the wild. An update was made available, and version 1.3.8 and later have patched out the vulnerability.
Transparency statement: This plugin is not being used on Wyo Support News.
Third-Party references:
Click the links below to learn more details. (Opens in a new tab/window.)