Alertes de sécurité
Description
Diverses attaques contre des comptes d’utilisateurs WordPress ont conduit à la compromission de plusieurs extensions, ce qui a permis d’accéder à des milliers de sites.
<show-title class="text-sm"></show-title>
<episode-title class="text-base mb-2"></episode-title>
<subscribe-button class="mb-4 mobile:flex tablet:hidden"></subscribe-button>
<poster class="rounded-sm w-48 shadow overflow-hidden"></poster>
<divider class="w-full my-6"></divider>
<poster class="rounded-sm shadow overflow-hidden"></poster>
<show-title class="text-base"></show-title>
<episode-title class="text-xl desktop:text-2xl"></episode-title>
<divider class="w-full my-4"></divider>
<play-state on="active">
<speed-control class="flex items-center"></speed-control>
</play-state>
<play-state on="active">
<chapter-previous class="mx-2 block"></chapter-previous>
</play-state>
<play-state on="active">
<step-backward class="mx-2 block"></step-backward>
</play-state>
<play-button class="mx-2 block" :label="$t('PLAYER.PLAY_EPISODE')"></play-button>
<play-state on="active">
<step-forward class="mx-2 block"></step-forward>
</play-state>
<play-state on="active">
<chapter-next class="mx-2 block"></chapter-next>
</play-state>
<play-state on="active">
<volume-control class="flex items-center"></volume-control>
</play-state>
<progress-bar></progress-bar>
<timer-current class="text-sm"></timer-current>
<play-state on="active">
<current-chapter class="text-sm"></current-chapter>
</play-state>
<timer-duration class="text-sm"></timer-duration>
<divider class="w-full mt-6 mb-3"></divider>
<tab-trigger tab="chapters">
<icon type="chapter"></icon>
</tab-trigger>
<tab-trigger tab="transcripts">
<icon type="transcripts"></icon>
</tab-trigger>
<tab-trigger tab="files">
<icon type="download"></icon>
</tab-trigger>
<tab-trigger tab="playlist">
<icon type="playlist"></icon>
</tab-trigger>
<tab-trigger tab="share">
<icon type="share"></icon>
</tab-trigger>
<subscribe-button class="mt-1 mobile:hidden tablet:flex"></subscribe-button>
<tab name="chapters">
<tab-chapters></tab-chapters>
</tab>
<tab name="transcripts">
<tab-transcripts></tab-transcripts>
</tab>
<tab name="files">
<tab-files></tab-files>
</tab>
<tab name="playlist">
<tab-playlist></tab-playlist>
</tab>
<tab name="share">
<tab-share></tab-share>
</tab>
<tab-overflow></tab-overflow>
<error></error>
</root>
<script>
document.addEventListener("DOMContentLoaded", function() {
var player = document.getElementById("player-67370b23ad6ea");
podlovePlayerCache.add([{"url":"https:\/\/www.wppodcast.fr\/wp-json\/podlove-web-player\/shortcode\/publisher\/1630","data":{"version":5,"show":{"title":"Podcast WordPress (fran\u00e7ais)","subtitle":"Informations sur la Communaut\u00e9 WordPress","summary":"Informations, actualit\u00e9s et interviews sur la communaut\u00e9 WordPress.","poster":"https:\/\/www.wppodcast.fr\/podlove\/image\/68747470733a2f2f7777772e7770706f64636173742e6e65742f77702d636f6e74656e742f75706c6f6164732f73697465732f352f323032302f30382f7770706f64636173742d7371756172652e706e67\/500\/0\/0\/podcast-wordpress-francais","link":"https:\/\/www.wppodcast.fr"},"title":"Alertes de s\u00e9curit\u00e9","subtitle":"Diverses attaques contre des comptes d'utilisateurs WordPress ont conduit \u00e0 la compromission de plusieurs extensions, ce qui a permis d'acc\u00e9der \u00e0 des milliers de sites.","summary":"","publicationDate":"2024-07-02T00:00:00 +00:00 ","duration":"00:09:57 .310","poster":"https:\/\/www.wppodcast.fr\/podlove\/image\/68747470733a2f2f7777772e7770706f64636173742e66722f77702d636f6e74656e742f75706c6f6164732f73697465732f352f323032342f30352f6261636b67726f756e642e706e67\/500\/0\/0\/alertes-de-securite","link":"https:\/\/www.wppodcast.fr\/podcast\/alertes-de-securite\/","chapters":[],"audio":[{"url":"https:\/\/www.wppodcast.fr\/podlove\/file\/263\/s\/webplayer\/c\/website\/wordpress-podcast-fr-e033.mp3","size":"14019960","title":"MP3 Audio (mp3)","mimeType":"audio\/mpeg"}],"files":[{"url":"https:\/\/www.wppodcast.fr\/podlove\/file\/263\/s\/webplayer\/wordpress-podcast-fr-e033.mp3","size":"14019960","title":"WordPress Podcast","mimeType":"audio\/mpeg"}],"contributors":[{"id":"3","name":"Patricia","avatar":"https:\/\/www.wppodcast.fr\/podlove\/image\/68747470733a2f2f7777772e67726176617461722e636f6d2f6176617461722f65666635356637353931656530393038623930646431373234633239306430612e6a70673f733d35313226643d6d6d26723d67\/150\/150\/0\/patricia","role":{"id":"1","slug":"presentateur","title":"Pr\u00e9sentateur"},"group":null,"comment":null}]}}, {"url":"https:\/\/www.wppodcast.fr\/wp-json\/podlove-web-player\/shortcode\/config\/default\/theme\/wppodcast-blocks","data":{"activeTab":"chapters","subscribe-button":null,"share":{"channels":[],"outlet":null,"sharePlaytime":false},"related-episodes":{"source":"podcast","value":null},"version":5,"playlist":"https:\/\/www.wppodcast.fr\/wp-json\/podlove-web-player\/shortcode\/podcast","theme":{"tokens":{"brand":"#15803D","brandDark":"#15803D","brandDarkest":"#15803D","brandLightest":"#fff","shadeDark":"#000","shadeBase":"#000","contrast":"#000","alt":"#fff"},"fonts":{"ci":{"name":"Outfit","family":["sans-serif"],"src":[],"weight":800},"regular":{"name":"Outfit","family":["sans-serif"],"src":[],"weight":300},"bold":{"name":"Outfit","family":["sans-serif"],"src":[],"weight":700}}},"base":"https:\/\/www.wppodcast.fr\/wp-content\/plugins\/podlove-web-player\/web-player\/"}}]);
podlovePlayer(player, "https://www.wppodcast.fr/wp-json/podlove-web-player/shortcode/publisher/1630", "https://www.wppodcast.fr/wp-json/podlove-web-player/shortcode/config/default/theme/wppodcast-blocks").then(function() {
player && player.classList.remove("podlove-web-player-loading");
});
});
</script>
N’oubliez pas que vous pouvez écouter les épisodes sur Pocket Casts, Spotify, et Apple Podcasts ou vous abonner directement au flux.
Transcript de l’épisode
Bonjour, je suis Patricia, et vous écoutez WordPress Podcast, le bulletin d’information de la communauté WordPress. Ce programme est la traduction en français de la version originale en espagnol.
Dans cet épisode, vous trouverez les informations du 24 au 30 juin 2024.
WordPress est-il sûr ? La réponse est claire et simple : oui. Cependant, les utilisateurs et utilisatrices ou les personnes qui se trouvent derrière l’ensemble de la communauté sont souvent le maillon faible en matière de sécurité informatique.
En début de semaine, certains utilisateurs et utilisatrices ont subi une attaque sur leurs comptes en utilisant des noms de compte et des mots de passe précédemment publiés dans des brèches de données. Au moins cinq comptes de développeurs ou développeuses d’extensions ont été compromis parce qu’ils utilisaient le même mot de passe que sur d’autres sites piratés.
Il est important de noter qu’en avril 2021, a été lancé le système Release Confirmation. Ce système envoie un e-mail à chaque fois qu’une modification est tentée dans les données du dépôt de l’extensio