Posts Tagged ‘vulnerabilities’
Never leave a File Manager plugin on your WordPress website in the first place!
A File Manager plugin can be a very useful tool when you need it, but you can say the same thing about a stick of dynamite! It’s not something you want to leave in the kitchen junk drawer in case you need it later! David Innes, owner of RealBasics.com The ultra-tech website Ars Technica reported…
Read MoreThree out-of-date plugins are responsible for 25% of all WordPress hacks
Serious advice from the makers of the iThemes Security plugin A very interesting and helpful article was published by Sucuri that looks at security vulnerabilities. The article identifies the top 3 plugins that are left on sites OUTDATED and cause nearly 25% of the total WordPress compromised sites they see: TimThumb, Revslider, and Gravity Forms. Remember…
Read MoreThe Days of Adobe Flash-Driven Websites are Seriously Numbered!
According to the venerable tech website Ars Technica, Google has announced by the end of the year its Chrome browser will display Adobe Flash animations only if you actively click on them. By the end of the 2016 Chrome will disable Flash altogether! Google will be taking another step towards an HTML5-only Web later this year,…
Read MoreCool post: 11 Simple Tips to Boost Your Website’s Security
From Shaun Quarton at Torque Magazine Backup your site Keep everything updated (Wordpress plus themes and plugins — even the ones that aren’t in use.) Hide your WordPress version Choose secure passwords Use secure usernames too (do not use “Admin”) Move you login page Hide your username (your login name) Limit login attempts Use a…
Read MoreOver a billion websites: mostly parked, old, vulnerable!
Statistics site Internet Live Stats reports there are currently 1,060,822,043 websites in the world! Even if you read this only minutes after I post there will already be thousands more! Just follow that link and watch the counter fly! ILS also reports, however, that It must be noted that around 75% of websites today are not active, but…
Read MoreWhat Would You Do If Your Site Completely Disappeared?
Nobody wants to see messages like these when they visit their website. Or their hosting company. Or their website control panel. And the good news? Usually you don’t! It’s even better news if you have regular, recent backups stored somewhere besides your hosting company’s servers. That way, if bad comes to worse and your hosting company has…
Read MoreFolks who don’t have RealBasics service contracts need to patch their Wordpress sites.
On the other hand if you’re already one of our service customers your software’s already updated and your site is secure. Here’s the warning from the good folks at WordFence WordPress Vulnerability: WordPress before 3.7.2 and 3.8.x before 3.8.2 allows remote authenticated users to publish posts by leveraging the Contributor role. More info available on the…
Read MoreNews for clients about the “Heartbleed” security flaw
Summary: Unless we’ve contacted you individually via phone or email your site doesn’t use security certificates and so it’s not directly affected by the widely reported Heartbleed internet-security bug. Details: When a security bug is reported as straight news in the New York Times it’s probably pretty serious. And the newly reported OpenSSL “Heartbleed” bug, which may have…
Read More