Latest security concern - FEB 2017

February 15, 2017

A year ago, when DROWN hit the news (read more here: SSL vulnerability affects 33% of the web) it was covered everywhere. All websites talked about. We talked about. Our customers did not understand and they were not scared. We ran at that time a FREE campaign to see if your website were affected. It was ok, nobody got seriously injured.

Two weeks ago, WordPress REST-API exploit hit the news (read more here: Target Remote Code Execution). websites are covering the news, the story. We're talking about. Our customers still don't understand the hows and whys - but they are scared. We keep busy, resolve a few defaced websites, life goes on. So what changed?

John Lilly

Our only is our ability to change.

Compared to DROWN, strictly from the business view, not technical, the problem is similar. issues are affecting a significant segment of the online live websites. The difference is, that a hacked or defaced website is visible. Is visible by the end-user, by the customer, by the business . When those people contact the owner, that something happened to the website, they got the full attention and it's an urgent one. So urgent, so wide-spread, that even Google Trends start to report these websites. Take a look via this link.

Again, we urge everybody: it's cheaper to prevent disasters than to resolve it. Preventative solutions work! You can your website with our recurrent owl WordPress Services. Let us bang our heads with these kinds of problems. At least we're good at it - doing this since 2014! We also figured out, that is a vital part of the of any WordPress website. So, we added it to the owl WordPress Services pack - we're doing for everybody, at any type of recurrence.

WordPress Core vulnerability October

WordPress Core vulnerability October

Nov 03 2017

For your , be informed about the latest WordPress Core vulnerability, fixed in release WordPress 4.8.3 from October 31, 2017.…

WP Security: plugin vulnerabilities October

WP Security: plugin vulnerabilities October

Nov 01 2017

For your , be informed about the latest vulnerabilities in WordPress plugins: Content Timeline Multiple Blind SQL Injection reported by Jeroen…

WordPress protection: Core vulnerabilities September

WordPress protection: Core vulnerabilities September

Oct 02 2017

For your , be informed about the latest WordPress Core vulnerabilities fixed in release WordPress 4.8.2 from September 2017. WordPress…

WP Security: plugin vulnerabilities September

WP Security: plugin vulnerabilities September

Oct 01 2017

For your , be informed about the latest vulnerabilities in WP plugins: Participants Database Cross site scripting (XSS) reported by Benjamin…

WP Security: plugin vulnerabilities August

WP Security: plugin vulnerabilities August

Aug 31 2017

For your , be informed about the latest vulnerabilities in WP plugins: AddToAny Share Buttons Conditional Host Header Injection reported by…

Identified as New WP under 30 min

Identified as New WP under 30 min

Aug 03 2017

Your freshly installed, brand new WP is discovered faster than you imagine. Amazingly, even before you are informed. Find out how in…

No comments

Leave a Reply

Your email address will not be published.

Latest security concern - FEB 2017

by Csaba Miklós time to read: 4 min
0