Author: SiteLock Page 2 of 26

Plugin Vulnerabilities: WordPress Fashion Blogger Hit by Zero-Day Exploit

By

On January 30, 2020

In SiteLock Reviews

The desks were filled in the SiteLock Security and Research departments. Our security analysts were furiously working to manually clean malware from a number of WordPress sites. As each site was cleaned a trend began to emerge. Sites built with WordPress were experiencing a malicious redirect that originated in the Yuzo Related Posts plugin due to a Cross-Site Scripting (XSS) vulnerability. Our security analysts recognized they were cleaning the same malware strain found in the Yuzo zero-day exploit.

Lydia Swanson, fashion blogger and owner of ChicandModish.com was just one of many website owners experiencing this issue. In Swanson’s case, the attack not only impacted revenue but also put the future of her brand at risk.

Read More

SiteLock INFINITY Wins the 2019 Cloud Security Excellence Award

By

On December 30, 2019

In SiteLock News

We are excited to announce that SiteLock® INFINITY™ has been recognized as a WINNER of the 2019 Cloud Computing Security Excellence Awards! The Cloud Computing Security Excellence Awards, presented by TMC’s Cloud Computing Magazine, honor solutions in two categories: solutions that most effectively leverage cloud platforms to deliver network security, and those providing security for cloud applications.

Read More

Joomla! 3.9.13: A security fix release for the 3.x series of Joomla!

By

On November 7, 2019

In Joomla! News

The beginning of November brings us a brand-new update for the Joomla! 3.x series that addresses two new security vulnerabilities and improves the overall user experience by addressing 15 bug fixes. As of November 5th, you can download or update to the latest version, which is 3.9.4. All security vulnerabilities are considered low; however, it is still advisable to update your Joomla! installs as soon as possible to avoid any potential issues.

Read More

Where do the 2020 Candidates Stand on Cybersecurity Awareness?

By

On October 14, 2019

In Cybersecurity News, SiteLock News

The ugly news about Russian interference in the U.S. presidential election forced the issue of cybersecurity into the political spotlight in 2016. Since this catalytic event, political leaders have grappled with cybersecurity awareness on a global stage — and not all have done so gracefully.

Bad actors, whether politically motivated or not, grow increasingly sophisticated as our world becomes more rooted in technology. However, it appears lawmakers aren’t prepared for this reality. One example: too many are in the dark about website encryption — 61% of world politicians’ websites aren’t HTTPS-secured.

Read More

malicious plugin

Getting Dorky: How bad actors can leverage Google Dorks for attacks

By

On October 3, 2019

In SiteLock Research

If you are like most people, you use Google to search the internet for news, recipes, and pictures of cats. You type in your query, search, and most likely select the first link that Google returns. If you are a savvy user, you know how to use a colon to search specific sites or quotes to find specific words in your search. If you are a hacker, you most likely know how to Google Dork.

Google Dorking, or “Google Hacking,” got its start back in the early 2000s when a hacker realized Google could be used to uncover sensitive data with well-crafted queries. Fast forward to today, and the Google Hacking Database is brimming with over five thousand queries that can be used to find vulnerable information.

Read More

Building a Secure Website In 30 Minutes Or Less

By

On September 26, 2019

In SiteLock Research

When building a business website or blog, it’s essential to make your website’s security a top priority. In addition to learning how to build a website, any small business owner or blogger should understand how to secure their website. Although the topic of website security might sound complicated, it doesn’t need to be a long, drawn-out process. Today’s post will cover useful tips for building a secure website or blog in thirty minutes or less.

1. Keep Your Website Up-To-Date

Read More

Spyware in the IoT – the Biggest Privacy Threat This Year

By

On August 23, 2019

In SiteLock News

Technology. It’s designed to make our homes more comfortable and workplaces more efficient. 

But, every advancement towards realizing a 21st century quality of life comes with a wave of security threats, old and new. The consequences of which are not only born by companies who are the primary targets of cybercrime. Your home systems are more vulnerable than you think.

Read More

SiteLock© INFINITY™ Patches the Joomla! Contact Form Vulnerability

By

On August 15, 2019

In Joomla! News, SiteLock Research

Joomla! released version 3.9.11 on August 13, 2019, to patch vulnerabilities found within versions 1.6.2 and 3.9.10. This latest security update fixes a vulnerability that allows for mail submission in disabled forms. 

Prior to this patch, it was possible for anyone to submit a mail submission to a form even if it was disabled. Com_contact is activated by default in Joomla! installations. This means any user running Joomla! versions 1.6.2-3.9.10 are affected by this vulnerability. With no contacts established or the functionality is disabled, the plugin should not have the ability to send an email, however, with this particular vulnerability it can still send spam emails.

Read More

Protect Customer Data with the Enhanced SMART Database Scanner

By

On August 6, 2019

In Product Updates, SiteLock News

30% of all malware cleaned by SiteLock’s Expert Services is located inside website databases. With databases housing critical customer data like emails, addresses, and other personal information, we knew we needed to develop a comprehensive solution to keep companies secure. That’s why we launched SMART® Database (SMART/DB™) two years ago, automatically detecting spam or malware found within critical WordPress database tables.

We are excited to announce we are taking database security a step further. 

Read More

Free Webinar: Security Trends Impacting Your Website

By

On July 1, 2019

In SiteLock News, SiteLock Research

Please join SiteLock for our next webinar as we examine the latest cybersecurity trends and data from our 2019 Website Security Report.

The report analyzes more than 6 million websites to determine the most prevalent cyberthreats websites face today, and provides unique insight into the top website risk factors and emerging trends for 2019. 

Hosted by SiteLock Product Marketing Specialist, Monique Becent, the webinar will cover: 

Read More

Page 2 of 26

← Previous

Next →

Categories

Archives

SiteLock Blog Topics

botnet Case study community interview Content Delivery Network (CDN) Cross-Site Scripting (XSS) cybercrime cybersecurity laws data privacy data protection data security DDoS Attack Drupal ecommerce event recap Hosting Provider how to Internet of Things (IoT) Joomla malvertising malware Malware removal Malware Scanner national cybersecurity awareness month (NCSAM) password security PCI Compliance phishing protect your online business ransomware recap Safe Holiday Shopping Security Updates SiteLock events SiteLock reviews SQL Injection (SQLi) Target Vulnerabilities vulnerability web application firewall (WAF) web application security website scanning website security Website Security Insider WordCamp wordcamp recap wordpress

Quick Links

SiteLock.com