At SiteLock we review websites for malware every day, and every month we clean over 50,000 malware infected websites. We find thousands of security flaws daily and protect our customers from sophisticated attacks. Regardless of the issue, we would not be able to secure all 50,000 sites without the help of our amazing Support Team.
Author: Lauren Papagalos (Page 1 of 34)
Did you know a whopping 113 million websites contain a security vulnerability? That’s approximately six percent of all websites globally. A website vulnerability is a weakness in website code that cybercriminals can exploit to gain unauthorized access to a site—and a mere one vulnerability has the power to impact over 1,000 pages on a single website.
Let’s talk about one of the most common types of vulnerabilities on the OWASP Top 10: broken authentication & session management. Simply stated, broken authentication & session management allows a cybercriminal to steal a user’s login data, or forge session data, such as cookies, to gain unauthorized access to websites.
We continue to hear about cyberattacks and data breaches around the world. Last week, the European retailer, Dixons Carphone, admitted to a huge data breach involving 5.9 million credit cards and 1.2 million personal data records. Meanwhile in the United States, net neutrality has officially been repealed. The rules that required internet service providers to offer equal access to all web content are no longer in effect as of June 11, 2018.
Did you know all the features that make your website unique and engaging could also be putting it at risk of compromise? The reality is, all websites are at risk of attack—and your site features, like plugins, are actually putting you at an increased risk. This is why it’s important for website owners to understand their likelihood of a breach. When you know your risk, you can make an educated and proactive decision about your security.
But how can you find out your risk, and what can you do to lower your chances of a breach? SiteLock created a proprietary risk assessment to determine your likelihood of a compromise. The assessment reviews your site and calculates your risk score on a scale of low, medium, and high—ensuring you’re informed about any potential threats you might face.
Did you know a single website experiences 44 attacks per day on average? Cybercriminals target websites to steal customer information, traffic, resources (like bandwidth), and of course, money. If you’re reading this, you’re already on the right track to protecting your website by taking matters into your own hands and researching security options.
That said, if you’re new to cybersecurity, deciding if and how you should protect your website can be confusing and overwhelming. We know there are a lot of things to consider when investing in your security—like your budget, needs, and whether or not the product or company is a good fit. At SiteLock, we’re here to help. SiteLock provides comprehensive website security to help find, fix, and prevent cyberattacks. We want to work with you, but the question is…do you want to work with us? Rather than us telling you why we’re a good fit, we thought it’d be best if you read what our customers have to say about their SiteLock experience.
Making headlines last week, the spam campaign Brain Food has been feeding email recipients a steady diet of junk messages, infecting over 5,000 compromised websites over the last four months. Additionally, the U.S. Federal Bureau of Investigation (FBI) took control of a large cyber-attack aimed at Ukraine in late May 2018. The massive malware campaign infected up to 500,000 routers, many located in small businesses and home offices around the world.
Cybersecurity issues can occur anywhere, even in cardiac devices and pacemakers. The U.S. Food and Drug Administration (FDA) announced an upgrade to the firmware installed on certain vulnerable cardiac devices. The update protects these devices from unauthorized access that could be harmful to patients. Also making headlines last week, Georgia’s governor vetoed a bill that would have criminalized unauthorized computer access. The bill received blowback from the state’s booming cybersecurity industry for claiming vulnerabilities in important computer systems would not be uncovered and disclosed responsibly. As a result, cybercriminals would be able to exploit them with ease.
Decoding Security is celebrating National Small Business week by sharing simple recommendations that small businesses can use to protect themselves from today’s ever evolving cyberthreats. But first, we take a look at what’s trending in the news. Two additional security updates were released by the Drupal security team last month as part of continuing maintenance efforts after the discovery of the initial Drupalgeddon2 vulnerability in March. Drupal is urging its users to implement these updates immediately to avoid possible compromise. Meanwhile, the RSA Security Conference took place in San Francisco last month, drawing thousands of attendees from across the globe. However, the third-party mobile app built for the mega IT security conference was found to have a vulnerability, which could have potentially leaked the first and last names of attendees.
Continuing to deal with the fallout from the Cambridge Analytica data scandal, last week, Facebook founder and CEO Mark Zuckerberg, testified before U.S. Congress admitting he never audited Cambridge Analytica to ensure the Facebook user data collected had been deleted. Also in the news this week, Panera Bread experienced a data breach that exposed millions of customers’ personal data for as long as eight months. Despite being warned by multiple security researchers, Panera did not disclose or address the leak until last week.
Ding ding ding! The bell just rang, and the match has begun. In one corner of the ring stands your WordPress website, flexing 15 plugins, a custom theme, and a brand-new layout designed to attract more visitors. In the opposite corner is a snarling cybercriminal, with an undefeated record in defacements and a two-time championship belt in malware infections. Is your website prepared to fight back?
In today’s threat landscape, cybercriminals are increasingly attacking WordPress websites. In fact, the average website experiences 44 attacks per day, and WordPress websites are two times more likely to be compromised than non-WordPress sites. As a website owner, it’s time to get off the mat and fight back!