Being the victim of a website hack isn’t always obvious. Here are five ways to tell if your WordPress website has fallen victim to a hacker, and they’re not what you might expect.
Month: November 2015 Page 1 of 2
It’s easy to get wrapped up in the holiday frenzy. With the allure of Cyber Monday markdowns, it’s easy to forget to use proper precautions when shopping online. Everyone expects that all the ecommerce sites are safe, but there is always the possibility of getting tricked into visiting a website managed by cybercriminals. Here are a couple things to be mindful of as you shop online this weekend.
Whether just taking the plunge into the WordPress wonderland to launch a personal blog or full-fledged ecommerce site, or you’ve been using WordPress for a while now, it was a good choice. With a mature code base, a plethora of plugins and themes, and a vibrant, helpful community, WordPress is the ideal platform to create a rich presence on the web.
For WordPress security needs–from the development workstation to the server hosting the site—there are simple steps site owners and developers can take to help ensure a site’s overall security.
In last week’s “episode” of ‘This Week in Exploits’, we talked about Cross-Site Scripting (XSS) and specifically reflective XSS vulnerabilities, the most common type of XSS flaw. We now know roughly what a XSS attack is, and some of what a reflected XSS attack does, but why do XSS attacks exist? How can they be used?
The holiday season is a busy time for online retailers and other ecommerce websites. Unfortunately, it’s also prime time for cybercriminals to attack. As you prepare for the uptick in traffic, don’t let an oversight make you vulnerable to a breach. Instead, get ahead securing your ecommerce website by knowing what to expect.
Anticipate an Attack
Cybercriminals assume that retailers are caught up in the holiday shopping frenzy and will use this opportunity to take advantage of lax security. Anticipating their behaviors can help mitigate risk and prevent an attack.
In the world of websites, hackers have a variety of tools to intrude on people’s domains. These hacks, which take advantage of vulnerabilities in a site’s code, are categorized by projects like the OWASP Top Ten.
According to the OWASP assessment, the top three most common attacks are:
- Weak Authentication and Session Management
- Cross-Site Scripting (XSS)
As new vulnerabilities are discovered, we still can see that a large portion of these vulnerabilities are XSS-related vectors.
SiteLock is proud to announce that we’ve been named one of the fastest growing technology companies in North America in the recent Deloitte Technology Fast 500 list! We officially rank number 85 with a 1046 percent growth between 2011 and 2014. In addition, we were also ranked as the number one fastest growing technology company in the state of Arizona.
Read more about this prestigious award and see the list in its entirety.
Modern browsers are more than programs used to peruse the web. Browsers are tools used to communicate, develop, conduct financial transactions, and interact with government agencies.
This week we will discuss browser security, and how it can impact website security. As a website is the portal to a company’s online presence and resources, a browser is the entryway into a user’s workstation computer and the data within.
Just How Important Is Browser Security?
The link between browser security and website security is not conflated. Here at SiteLock, we’ve seen many sites compromised through stolen FTP credentials, and entire company file stores lost to ransomware.
Browsers were the likely point of entry of these compromises. Every website owner and web developer is sure to use a browser, most likely multiple browsers, to access the website hosting or accessing site files and credentials. Again, the browser is the portal from the open web to the workstation. Below, we’ll cover the steps necessary to better secure this entry point.
Black Friday is one of the most anticipated shopping days of the year. Shoppers are up at the crack of dawn to hit their favorite stores. Some will go as far as to camp out at the stores offering the hottest deals while others will avoid the malls altogether by finding the best sales online. Nearly 100 million Americans are expected to take advantage of Black Friday discounts this year. However, these shoppers aren’t the only ones who have been waiting for Black Friday; cybercriminals are just as excited for this big shopping day. Securing your website for the holiday season is one of the best things you can do for your business and your customers.